Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
370
Views
0
Helpful
4
Replies

Regarding mapping of public IPs to the private IP for server access

diwakar410
Level 1
Level 1

‎06-18-2016 10:53 PM - edited ‎03-12-2019 12:54 AM

My client has a public ip which i had configured in the 0/0 interface of the ASA. For example:

1.1.1.1/29 is the public ip.

Now i can use the ip from range 1.1.1.1 to 1.1.1.5 

What he wants me to do is to configure the ASA in such a way that the servers that are in my private interface from range 10.10.10.1/24 to be mapped to public IPs. I am new to this configuration so i am little confused. 

What he exactly told me was that i need to create the "server form" in the ASA so that :

1.1.1.2 will be mapped to mail server in my private interface 10.10.1.2

similarly, 1.1.1.3 will be mapped to web server in my private interface 10.10.1.3 and so on. 

How can this be accomplished? 

I have already configured static NAT, access rules and things that are needed for basic operation. Now, all i need is just to map the public ip range with private ips

Please help.

Labels:
0 Helpful
4 Replies 4

Aditya Ganjoo
Cisco Employee
Cisco Employee

‎06-19-2016 01:27 AM

Hi Diwakar.

Yes you are doing it correctly.

You just need to map the static IP's with the NATTed IP's and allow the ACL's on the outside interafce.

It should be good enough.

Regards,

Aditya

Please rate helpful posts and mark correct answers.

0 Helpful

diwakar410
Level 1
Level 1
In response to Aditya Ganjoo

‎06-19-2016 01:53 AM

Thank you Aditya for your help. You have always been there for me whenever i have some queries.
Can you please help me with the commands ?
For example: 1.1.1.2 will be mapped to web server in my private interface 10.10.1.2. So what will be the commands like?
I am using ASA version 9.2(4).

0 Helpful

Aditya Ganjoo
Cisco Employee
Cisco Employee
In response to diwakar410

‎06-19-2016 08:46 PM

Hi Diwakar,

Here is an example for the command:

object network obj-10.10.1.2

host 10.10.1.2

nat (inside,outside) static 1.1.1.2

Regards,

Aditya

Please rate helpful posts and mark correct answers.

0 Helpful

diwakar410
Level 1
Level 1
In response to Aditya Ganjoo

‎06-20-2016 05:31 AM

Hello Aditya,

I already have the public ip of A.B.C.D. The internet is working fine from that one. 

Now, the client has given me other Public ip pool of x.x.x.x/29 and have asked me to map the IP in the pool to the respective servers in the private IP.

For eg: 10.10.1.2 has the MIs server and they want me to map this private IP to the ip in the pool to let us say 202.203.204.205 and similarly,

10.10.1.3 which is web server should be mapped to the IP in the pool eg: 202.203.204.206 and so on.

Now, How do i do it?

I have 6 interfaces on ASA. 0/0 has the public ip and 0/5 has the pool ip. Is it wise to put the pool ip in one of the interface? Else, what can be done?

Hope you understood me. 

Please help me.

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card