1. Home
  2. Cisco Systems
  3. Port fordwarding problem

Port fordwarding problem

Hi,

¿Can you speak spanish? ¿A Cisco forum in Spanish? Sorry for my very bad english.

I'm beginner with Cisco PIX

Cisco PIX 515E 6.3 with PDM 3.0. inside: 10.3.1.20 outside: 172.19.16.1

I need to publish a Terminal Server with IP 10.3.1.2 for access from any WAN address. The router forward all inbound traffic to 172.19.16.1

I add a Translation Rule in PDM: inside: 10.3.1.2/255.255.255.255 outside: static 172.19.16.1 - redirect port 3389 - 3389 I add a access rule in PDM: outside: any inside: 10.3.1.2/255.255.255.255 original port: any destination port: 3389 enable syslog: debugging

Works fine during a few minutes... because after the inbound conections not work. If I cut and paste the rules and apply the conections works again during a few minutes... ¿¿??

¿What is the problem? ¿Can help me?

Very thanks, Diego Fernández

Reply to
Diego Fernández
Loading thread data ...

From a command line can you type 'show static' and then 'show nat' and send the output from both. Also 'show xlate'

Mike

Diego Fernández wrote:

Reply to
MijK

Hi, The server SRVTERM2 is 10.3.1.2. In this moment, the port forwarding not work. If I delete de translation rule and de access rule, add rules and apply woks fine during a few minutes...

Result of firewall command: "show static" static (inside,outside) tcp interface 3389 SRVTERM2 3389 netmask

255.255.255.255 0 0

Result of firewall command: "show nat" nat (inside) 0 access-list inside_outbound_nat0_acl nat (inside) 0 0.0.0.0 0.0.0.0 0 0

Result of firewall command: "show xlate"

48 in use, 48 most used Global 10.5.21.60 Local 10.5.21.60 Global 10.3.1.154 Local 10.3.1.154 Global 10.3.1.98 Local 10.3.1.98 Global 10.3.1.110 Local 10.3.1.110 Global 10.3.1.93 Local 10.3.1.93 Global 10.3.1.185 Local 10.3.1.185 Global 10.3.1.117 Local 10.3.1.117 Global 10.3.1.184 Local 10.3.1.184 Global 10.3.1.146 Local 10.3.1.146 Global 10.3.1.59 Local 10.3.1.59 Global 10.3.1.177 Local 10.3.1.177 Global 10.3.1.150 Local 10.3.1.150 Global 10.3.1.94 Local 10.3.1.94 Global 10.3.1.183 Local 10.3.1.183 Global 10.3.1.141 Local 10.3.1.141 Global 10.3.1.65 Local 10.3.1.65 Global 10.3.1.145 Local 10.3.1.145 Global SRVTERM2 Local SRVTERM2 Global 10.3.1.178 Local 10.3.1.178 Global 10.3.1.134 Local 10.3.1.134 Global 10.3.1.86 Local 10.3.1.86 Global 10.3.1.123 Local 10.3.1.123 Global 10.3.1.182 Local 10.3.1.182 Global 10.3.1.166 Local 10.3.1.166 Global 10.3.1.187 Local 10.3.1.187 Global 10.3.1.189 Local 10.3.1.189 Global 10.3.1.70 Local 10.3.1.70 Global 10.3.1.118 Local 10.3.1.118 Global 10.3.1.76 Local 10.3.1.76 PAT Global 172.19.16.1(3389) Local SRVTERM2(3389) Global 10.3.1.143 Local 10.3.1.143 Global 10.3.1.130 Local 10.3.1.130 Global 10.3.1.190 Local 10.3.1.190 Global 10.3.1.159 Local 10.3.1.159 Global 10.3.1.107 Local 10.3.1.107 Global 10.3.1.186 Local 10.3.1.186
Reply to
dfernandez

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.