Old thread but I'm going to go ahead and provide an update on what solved this issue for me in hopes that it will help someone out. I had a case on this issue with TAC for 4 days with no resolution. It turns out that the "server" service on one of ...
Looks like your static NAT is correct.static (inside,outside) tcp "Public IP" 3389 "Internal IP address of inside RDP Machine" 3389 netmask 255.255.255.255Then write your ACL on the outside interface.access-list outside_access_in extended permit tcp ...
Add a static NAT entry on your inside interface (mine is called home). For the source, enter the IP address of the machine you want to be able to RDP to (mine is named VistaPC as seen below). Your Translated Interface will be the OUTSIDE interface. ...