hi

i have been trying to use port forwarding on an adsl router with ISP assigned public IP address on the dialer0 interface. i also have an ASA 5506-X behind the ADSL Router with a /30 public IP address.

i have the ASA working fine using ip nat inside source 1.1.1.1 2.2.2.2

where 2.2.2.2 is the dialer0 ISP assigned address and 1.1.1.1 is the public IPaddress on the outside interface of the ASA

Now i am trying to get anyconnect working through the router and have configured port forwarding as below:-

ip nat inside source static udp 1.1.1.1 4500 2.2.2.2 4500
ip nat inside source static udp 1.1.1.1 500 1.1.1.1 500
ip nat inside source static udp 1.1.1.1 443 1.1.1.1 443
ip nat inside source static tcp 1.1.1.1 443 1.1.1.1 443

i have also used the keyword "extendable" after the port forwading line , but no joy

when i browse to https://1.1.1.1 i cannot get to the ASA , i have also tried using the pre-download installation of anyconnect and that just times out when i connect to 1.1.1.1

i wanted to know if we can port forward from one public IP to another public IP ? i created the anyconnect using the ASA wizard.

i suspect the router is the cause of this for now,

how do i convert the cisco 887 VA router to a bridge mode -  this is my last resort , ideally i dont want to do this as its a major outage on the network

can the ASA have a 192.168.1.1 outside interface address and use port forwading for anyconnect to work.

any assistance will be great.

thanks

i have attached a copy of the config