ASA 5510 - port forwarding to external - Cabling-Design.com Forums

- C
- Cowboy (Gregory A. Beamer)
  
  Contact options for registered users
posted
15 years ago

Thu, Jul 24, 2008 2:28 AM

We have a VPN into our colocation facility and need to enable the following scenarios for different vendors/clients.

Forward all messages on a port to a vendor/client address. Two options here a) Down another VPN on the ASA - preferred b) Directly to an external address

Same as above, but also configure an internal route on the same port

We have been told by one consltant that this will probably require another ASA, but I am not sure we are getting the correct answer. Does anyone know if this is possible?

- A
- Artie Lange
  
  Contact options for registered users
Vote on answer
posted
15 years ago

Thu, Jul 24, 2008 11:35 AM

Are the different vendors on different subnets? If so I do not see any reason why you would not be able to create ACL's sufficient to restrict traffic to the specified ports/IP address.

formatting link

- C
- Cowboy (Gregory A. Beamer)
  
  Contact options for registered users
Vote on answer
posted
15 years ago

Thu, Jul 24, 2008 2:56 PM

That is what I thought, as well. I am just not very Cisco savvy, so I figured I would ping.

- A
- Artie Lange
  
  Contact options for registered users
Vote on answer
posted
15 years ago

Thu, Jul 24, 2008 2:57 PM

No problem, if you need further help with the design or config, post some additional details and the people of the group should be able to assist you!