- nat a range of ports to a local IP
- Posted by M on April 28th, 2007
Hi,
I need to NAT a range of ports into a local IP. port 2048 -> 3000 to
192.168.1.2.
What is the best way to do this om a ASA5505?
This does not work:
http://www.dslreports.com/faq/cisco/...Firewall#13794
My conf (does not work on a ASA):
ip nat pool p2p 192.168.1.2 192.168.1.2 netmask 255.255.255.0 type rotary
ip nat inside destination list allow_inbound pool p2p
access-list allow_inbound permit tcp any any range 2048 3000
Best regards
Martin
- Posted by Walter Roberson on April 28th, 2007
In article <46332394$0$90269$14726298@news.sunsite.dk>,
M <ujjj@ujjjj.org.off> wrote:
If the public IP to be used is the interface IP:
access-list allow_inbound permit tcp any interface outside range 2048 3000
access-list map_inbound permit tcp 192.168.1.2 range 2048 3000 any
access-group allow_inbound in interface outside
static (inside,outside) interface access-list map_inbound
- Posted by M on April 28th, 2007
Hi Walter,
Thank you for your answer.
I get this error in line two:
ASA-xx(config)# access-list map_inbound permit tcp 192.168.1.2 range
2048 3000 any
^
ERROR: % Invalid Hostname
Best Regards
Martin
Walter Roberson skrev:
- Posted by M on April 28th, 2007
255.255.255.255 mas missing :-)
M skrev:
