Cisco Community
English
Register
ANNOUNCEMENT - Upcoming Changes in the email address of Community email notifications - LEARN MORE
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

139
Views
0
Helpful
1
Replies
Highlighted
Dragomir
Beginner
Beginner
‎05-03-2011 04:44 PM
‎05-03-2011 04:44 PM

udp outbound rule

i have 4 or so interfaces on my asa

int1 - internal network

int2 - dmz

int3 internet

I want to allow an outbound udp port x.x.x.x from internal to dmz.

how would I do that?

Labels:
0 Helpful
Reply
1 REPLY 1
Highlighted
Maykol Rojas
Cisco Employee
Cisco Employee
‎05-03-2011 06:50 PM
‎05-03-2011 06:50 PM

Re: udp outbound rule

Hi,

If the "internal" interface has a higher security level than DMZ, what you need to do is just to add a nat translation (Only if you want access from internal to DMZ and not backwards)

In version 8.2 and earlier:

Nat (Internal) 1 0 0

global (DMZ) 1 interface

In version 8.3

nat (inside,DMZ) source dynamic any interface

Hope this helps.

Mike

Mike
0 Helpful
Reply
Latest Contents
AnyConnect 4.9 requires more stringent cryptography settings...
Created by Peter Davis on 07-08-2020 12:18 PM
0
5
0
5
Please note that the minimum cryptography settings in AnyConnect 4.9 have been increased. Please ensure that your head-end is properly configured for the more stringent cryptography settings (if applicable) or users will be unable to connect after updatin... view more
Companion Guide for TETRA Update Server Deployment
Created by dkrull on 07-08-2020 07:25 AM
0
0
0
0
  Overview In this guide will we be taking a look at how to configure the web.config file using the URL Rewrite tool when deploying the TETRA update server. This guide is meant as a companion to the existing guides and to help fill in some in... view more
AMP for Endpoints Bandwidth Consumption and Considerations
Created by dkrull on 07-07-2020 09:49 PM
0
0
0
0
    Note: This guide is provided as a best effort to better help users understand the potential impact running multiple clients with TETRA, SPERO, ETHOS, DFC and SHA256 Lookups enabled and their bandwidth usage. The sizes in these guides are s... view more
Why am I suddenly being prompted to create a new organizatio...
Created by diddly on 07-07-2020 01:23 PM
0
0
0
0
Question When I log into my application, I'm suddenly asked to create a new organization. Did something change or migrate? I already had an organization. Short Answer You may be starting from security.cisco.com and mistakenly clicking "SecureX sign-on... view more
I setup SecureX sign-on, why do I have to sign into AMP agai...
Created by diddly on 07-07-2020 10:28 AM
0
0
0
0
Question I followed these instructions and setup all my accounts to use SecureX sign-on, including my AMP account (my Cisco Security Account - CSA). When I use SecureX, and I click on the AMP "launch" button, I have to login again. Why?  --->&nbs... view more
CreatePlease to create content
Discussion
Blog
Document
Video
Content for Community-Ad