Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
419
Views
0
Helpful
3
Replies

Port is coded open, but says closed. ASA 5505.

jbornevihc
Level 1
Level 1

‎02-20-2013 06:39 AM - edited ‎03-07-2019 11:49 AM

I have a Cisco ASA 5505 with a fairly simple set up. Few VPN tunnels and only 3 open ports for applications. I have entered the following lines

static (inside,outside) tcp interface 9002 10.0.3.230 9002 netmask 255.255.255.255

access-list outside_access_in extended permit tcp any interface outside eq 9002

I have done this before with zero issues. The other two ports are open, however, port 9002 will not be visable from the outside. The ASA says it is open, but if I go to a site like canyouseeme, it shows closed. I cannot connect to the application either.

Result: ALLOW

Config:

static (inside,outside) tcp interface 9002 10.0.3.230 9002 netmask 255.255.255.255

  match tcp inside host 10.0.3.230 eq 9002 outside any

    static translation to ***.***.***.***/9002

    translate_hits = 0, untranslate_hits = 111

As you can see, the ASA is getting the hits, just not forwarding it? Any idea?

Labels:
0 Helpful
3 Replies 3

jawad-mukhtar
Level 4
Level 4

‎02-20-2013 11:37 AM

Can u check that port is open in your local system.

Jawad
0 Helpful

ALIAOF_
Level 6
Level 6

‎02-20-2013 01:52 PM

Have you tried to look at the log and/or do a packet capture to see what is happening to the traffic?

Also run wireshark on your local system as well to see what is happening to the traffic.

0 Helpful

jbornevihc
Level 1
Level 1
In response to ALIAOF_

‎02-21-2013 01:38 PM

The port is open on the inside.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card