Solved: You can configure the ASA to

farrukh19911 · ‎03-06-2017

Good Day everyone,

I have a Cisco ASA 5525. It has an external IP 80.80.80.80 where 80 and 443 ports are redirected to dmz. I need to configure Cisco Any connect, but as you know it needs 443 port, what in my case is not possible.

Is it possible to redirect 443 to another additional WAN IP (70.70.70.70), which is behind NAT? If yes, please share the rule for NAT.

Cisco Adaptive Security Appliance Software Version 9.2(2)4

Philip D'Ath · ‎03-06-2017

You can configure the ASA to use a different port, for example 444.

http server enable 444

Just make sure you put :444 on the end of the host string when you connect.

View solution in original post

Philip D'Ath · ‎03-06-2017

You can configure the ASA to use a different port, for example 444.

http server enable 444

Just make sure you put :444 on the end of the host string when you connect.

farrukh19911 · ‎03-06-2017

Thanks a lot. It worked.

Now I connected and how to access the server on DMZ? Can you please share any example?

Philip D'Ath · ‎03-06-2017

I would need to see your VPN config to help with that one.

farrukh19911 · ‎03-06-2017

I attached the configuration file.

Remind you that except icmp nothing working.

farrukh19911 · ‎03-06-2017

VPN CONFIG

How to configure Cisco Any Connect to access WAN IP from pool?

DNAC: IP Access Control の無効化("Allow all IP address to connect")手順

XE SD-WAN: WAN インタフェースの IP アドレスに ping すると NAT pool の IP アドレスに変換されてしまう

[Q&A 集公開] 10/16 開催 Catalyst SD-WAN と Secure Access 連携

Cisco Catalyst SD-WAN How To

Catalyst SD-WAN : Generic SIGを用いたSecure AccessとのIPsec VPNの確立