Just wanted to add another example of how to set up port forwarding on a cisco asa 5505.
This is how I managed to get it working.
This is an example where the inside network is 192.168.1.0 with netmask 255.255.255.0. The cisco asa has an ip address of 192.168.1.1. I am setting up a rdp and http rule to a server with the IP address of
192.168.1.13I am doing this by connecting to the ASA with the console cable using the terminal emulator ZOC pro 6.14 from emtec software. bitrate is
9600 8N1.ciscoasa> ena ciscoasa# conf t
First some NAT rules
ciscoasa(config)# static (inside,outside) tcp interface 3389
192.168.1.13 3389 netmask 255.255.255.255Then you can set up a http rule to the same server
ciscoasa(config)# static (inside,outside) tcp interface 80
192.168.1.13 80 netmask 255.255.255.255Ok we now have two rules, to make them work set up some access rules
ciscoasa(config)# access-list outside_access_in extended permit tcp any any eq 3389 ciscoasa(config)# access-list outside_access_in extended permit tcp any any eq 80
Then setup the outbound accesslist rule
ciscoasa(config)# access-list inside_nat0_outbound extended permit ip
192.168.1.0 255.255.255.0 192.168.1.0 255.255.255.0Then at last set up the exempt NAT rule
ciscoasa(config)# nat (inside) 0 access-list inside_nat0_outbound
Save the configuration
ciscoasa(config)# wr mem
Then do a reload
ciscoasa(config)# reload
I am not saying that this is the correct "cisco way" to do it, but this is how I got it to work. Good luck with your cisco ASA 5505