Solved: Static NAT with port redirection

sidcracker · ‎06-26-2011

Hello,

I am trying to migrate the PIX static NAT rules to the ASA 8.3 NAT rule

The PIX rule is given as follows

static (codea_dmz,outside) tcp 2.2.2.234 www 192.168.1.246 www netmask 255.255.255.255 0 0

static (codea_dmz,outside) tcp 2.2.2.234 https 192.168.1.246 https netmask 255.255.255.255 0 0

When I configure the same on the ASA 8.3 code with these commands, I can only configure one of the NAT commands. It wont accept both and when I attempt to add the second, it just overrides the first. How can I configure both these rules on the ASA code 8.3?

object network dmz-server-1-246

host 192.168.1.246

object network dmz-server-1-246

nat (codea_dmz,outside) static interface service tcp www www

Thanks

Jennifer Halim · ‎06-26-2011

You would need to create 2 separate object for that on ASA 8.3 NAT rule:

object network dmz-server-1-246-www

host 192.168.1.246

nat (codea_dmz,outside) static interface service tcp www www

object network dmz-server-1-246-https

host 192.168.1.246

nat (codea_dmz,outside) static interface service tcp https https

View solution in original post

Jennifer Halim · ‎06-26-2011

You would need to create 2 separate object for that on ASA 8.3 NAT rule:

object network dmz-server-1-246-www

host 192.168.1.246

nat (codea_dmz,outside) static interface service tcp www www

object network dmz-server-1-246-https

host 192.168.1.246

nat (codea_dmz,outside) static interface service tcp https https

sidcracker · ‎06-26-2011

Thanks Jennifer