For When You Can't Have The Real Thing
[ start | index | login ]
start > Cisco > ASA > 9.1 > Port Forward

Port Forward

Created by dave. Last edited by dave, 6 years and 216 days ago. Viewed 1,748 times. #1
[edit] [rdf]
labels
attachments
(2017-02-28)

Problem

I have firewall with public IP 1.2.3.4. I need to expose ssh the private server 192.168.1.1 on IP 1.2.3.5 to the internet peer at 1.9.1.1/

Solution

conf t
object SERVER-NAT
 host 192.168.1.1
object INTERNETPEER
 host 1.9.1.1
access-list inbound_acl extended permit tcp object INTERNETPEER object SERVER-NAT eq ssh
object SERVER-NAT
 nat (any,any) static 216.208.174.120
exit

You can adjust the nat(any,any) to be something like nat(DMZ,Outside) as appropriate if you want.

no comments | post comment
This is a collection of techical information, much of it learned the hard way. Consider it a lab book or a /info directory. I doubt much of it will be of use to anyone else.

Useful:


snipsnap.org | Copyright 2000-2002 Matthias L. Jugel and Stephan J. Schmidt