Dear All, I want to make a port forward, i don'n know how can i do it. I have an proxy server 50.11 behind the firewall and i want to forward all HTTP:80 request to 50.11:3128, and i want the 50.11:80 requests release out through the firewall. The inside network is 50.0. So i want to forwad the http request sent trough te 50.11:3128. Could someone help me?
... View more
Dear All, I have to connect behind my ASA5505 with an VPN klient to an other site. First time i got this failure. "Deny protocol 50 src inside:192.168.50.X dst outside:x.x.x.x by access-group "acl_in" [0x0, 0x0]" Than I opened our inside (src 192.168.50.0) network the UDP 500,4500 TCP 500,4500,10000 and ESP (dest x.x.x.x remote firewall ip). access-list acl_in extended permit esp host 192.168.50.0 host x.x.x.x eq isakmp access-list acl_in extended permit udp host 192.168.50.0 host x.x.x.x eq 500 access-list acl_in extended permit eudp host 192.168.50.0 host x.x.x.x eq 4500 etc. After that i could connect for the remote firewall with vpn client but i couldn't reach any PC1s on there side and ping gives back no anwser. Deny protocol 50 was solved but i got an other problem: "regular translation creation failed for protocol 50 src inside:192.168.50.X dst outside:x.x.x.x" I found somewhere thet lines can help: crypto isakmp nat-traversal inspect ipsec-pass-thru . But this wasn't usefull. I tried a many thing but i'm stuck. Could somebody help me what can i do to solve this problem? Thanks for all anwsers!
... View more