• cabling news
  Newsletter Industry News Our Site News
• help
  Home Cabling Guide Cabling FAQ Free Helpdesk Forums Learn Cabling
• resources
  Color Codes Pin Layouts Links E-books Bookstore Online Tools Downloads
• this site
  Home Page Contact us Advertise Here Link to us
• this page
  Bookmark It! Print
• +

Cisco Systems Port forwarding from cisco 2600 to ASA-5510

Bookmark this page:   Yahoo!   Google   Windows Live   del.icio.us   digg   Netscape

Subject Author Date Port forwarding from cisco 2600 to ASA-5510 recvfrom 07-20-06  Re: Port forwarding from cisco 2600 to ASA-5510 www.BradReese.C... 07-20-06  Re: Port forwarding from cisco 2600 to ASA-5510 recvfrom 07-20-06  Re: Port forwarding from cisco 2600 to ASA-5510 Darren Green 07-21-06

Posted by recvfrom on July 20, 2006, 10:23 am Please log in for more thread options Hi! I have remote clients at sites with very restrictive firewalls which allow only tcp/80 and tcp/443 outbound. I need to enable their remote access IPsec VPN clients, and the only way I can think of to do this is to 'deploy' and IP address, have their VPN clients point to it on tcp/443, instead of the normal port. Then I'd like the router, which has a *very* basic configuration, re-direct traffic destined for that address on tcp/443 to the ASA on tcp/10000, for example. Is that possible, and if so, how?? A nice, clear example would be **greatly** appreciated! TIA!!! -r

Posted by www.BradReese.Com on July 20, 2006, 12:41 pm Please log in for more thread options You may wish to investigate Cisco's IPSec Documentation: http://www.cisco.com/en/US/tech/tk583/tk372/tsd_technology_support_protocol_home.html Found on Cisco's VPN Documentation: http://www.cisco.com/en/US/tech/tk583/tsd_technology_support_category_home.html Sincerely, Brad Reese BradReese.Com - Refurbished Cisco PIX Firewall Guide http://www.bradreese.com/refurbished-cisco-pix-firewalls.htm 1293 Hendersonville Road, Suite 17 Asheville, North Carolina USA 28803 USA & Canada: 877-549-2680 International: 828-277-7272 Fax: 775-254-3558 AIM: R2MGrant BradReese.Com - Cisco Technical Forums http://www.bradreese.com/cisco-technical-newsgroups.htm

Posted by recvfrom on July 20, 2006, 3:33 pm Please log in for more thread options www.BradReese.Com wrote: Brad, > You may wish to investigate Cisco's IPSec Documentation: > > http://www.cisco.com/en/US/tech/tk583/tk372/tsd_technology_support_protocol_home.html > > Found on Cisco's VPN Documentation: > > http://www.cisco.com/en/US/tech/tk583/tsd_technology_support_category_home.html Thanks, but I'm not having any trouble with a VPN client. I would like to find a way to re-direct traffic for one socket to another as it passes through a router. Even reconfiguring the VPN service to listen on a different port does not help, since management functions are supplied on at least one of them. The VPN situation is just a concrete example of why I want to do this. Does that help to clarify? -r

Posted by Darren Green on July 21, 2006, 2:56 am Please log in for more thread options > Hi! > > I have remote clients at sites with very restrictive firewalls which > allow only tcp/80 and tcp/443 outbound. I need to enable their > remote access IPsec VPN clients, and the only way I can think > of to do this is to 'deploy' and IP address, have their VPN clients > point to it on tcp/443, instead of the normal port. Then I'd like the > router, which has a *very* basic configuration, re-direct traffic > destined for that address on tcp/443 to the ASA on tcp/10000, > for example. Is that possible, and if so, how?? A nice, clear > example would be **greatly** appreciated! TIA!!! > > -r > Hi, I have an old config for TFTP that I dug out. Whilst this was on an 837 I am sure that you could modify for your own purpose. The important lines were: ip nat inside source list 110 interface Dialer0 overload ip nat inside source static tcp 192.168.1.2 69 interface Dialer0 69 access-list 110 remark Nat list access-list 110 permit ip 192.168.1.0 0.0.0.255 any So...I allowed anything from inside to outside to be natted. The 2nd statement mapped 192.168.1.2 on my LAN range to the Dialer 0 public IP for TFTP. The syntax for this command with details on how to specify the port no's is here: http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t13/ftnatis.htm HTH. Regards Darren

Similar Threads	Posted
Port forwarding from cisco 2600 to ASA-5510	July 20, 2006, 10:23 am
ASA5510 IMAP Port Forwarding	February 21, 2007, 3:57 pm
Cisco 2600 + DSL + Cable -> Failover and port forwarding	July 2, 2008, 12:47 am
Port Forwarding with Cisco 871??	September 25, 2005, 12:58 pm
cisco pix 515 port forwarding - NOT possible? hard to believe..	July 27, 2005, 12:23 am
Cisco 871 router port forwarding	July 12, 2006, 8:41 pm
Cisco PIX 501 port forwarding trouble	September 24, 2006, 10:32 am
port mapping or forwarding on Cisco Pix 506E	August 5, 2005, 1:30 pm
Port Forwarding / VPN Pass-Thru on a Cisco 2800	August 30, 2006, 3:20 pm
ASA5510: inside DNS server getting denied - new 3 port installation	June 23, 2006, 8:50 pm
Port forwarding	February 2, 2006, 3:05 pm
Port forwarding help?	June 4, 2006, 10:23 pm
Need help Port forwarding on PIX 501	September 14, 2006, 9:18 am
Port 21 forwarding on PIX 501	September 15, 2006, 11:56 pm
PIX Port Forwarding	November 15, 2006, 2:42 pm

Contact Us | Privacy Policy