cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
166
Views
0
Helpful
1
Replies
Highlighted
Beginner

Pre 8.2 static NAT statement

How would I accomplish the below config on a pre 8.2 ASA 5505?

object network obj-192.168.3.5

host 192.168.3.5

exit

object service obj-4370

service udp source eq 4370

exit

nat (insisde,outside) 1 source static obj-192.168.3.5 interface service obj-4370 obj-4370

 

object network obj-192.168.3.6

host 192.168.3.6

exit

object service obj-4371

service udp source eq 4371

exit

nat (insisde,outside) 1 source static obj-192.168.3.6 interface service obj-4370 obj-4371

 

object network obj-192.168.3.7

host 192.168.3.7

exit

object service obj-4372

service udp source eq 4372

exit

nat (inside,outside) 1 source static obj-192.168.3.7 interface service obj-4370 obj-4372

Or just a static NAT for port 4370 on an ASA running 7.2

I have a device at 192.168.28.27 that needs to be open to UDP port 4370 from we'll say any public IP address.  How would I set that up?  I have attempted the following:

access-list outside_in extended permit udp any host 192.168.28.11 eq 4370
access-list outside_in extended permit udp any host 75.149.26.141 eq 4370

access-group outside_in in interface outside

Everyone's tags (1)
1 REPLY 1
Highlighted
VIP Advocate

I would go by the examples

I would go by the examples give here:

https://supportforums.cisco.com/document/33921/asa-pre-83-83-nat-configuration-examples

You should be looking at the "Regular Static PAT" section of the examples.

Also, your ACL should have the public ip address and port in a pre 8.3 config. So the following entry is correct:

access-list outside_in extended permit udp any host 75.149.26.141 eq 4370