Home > Others

Cisco ASA 8.4 (5) Service port forwarding configuration and tin melt letter, USG configuration diagram

Source: Internet
Author: User
Tags object object
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

Cisco ASA 8.4 (5) Service port forwarding configuration and tin melt letter, USG configuration diagram 

         The hottest day in Beijing was invited to debug a ASA5540.            The demand is simple, with 10 people surfing the Internet, and the other is VMware external services, that is, tcp443,tcp8443 and evil 4172.            Because of the operators to Www,https and other services to restrict, need to apply separately, in order to facilitate so friends want to convert HTTPS to TCP8888 (this is how to make a fortune AH).            The following is the configuration, because the version of the different find some information, are not all, so I will be the whole process of record for everyone to put forward criticism.  Step one: Establish an intranet IP object object network 50.30_4172_UDP host 192.168.50.30 Object Network         50.30_8443 host 192.168.50.30 Object Network 50.30_443 host 192.168.50.30 object Network 50.30_22                 Host 192.168.50.30 Object Network 50.30_4172_TCP host 192.168.50.30 Step two: conversion process Object Network 50.30_4172 NAT (inside,outside) static 202.202.202.202 service UDP 4172 4172 object n        Etwork 50.30_8443 Nat (inside,outside) static 202.202.202.202 service TCP 8443 8443 object Network 50.30_443 Nat (Inside,outside) static 202.202.202.202 service TCP HTTPS 8888 Object Network 50.30_22 NAT (Inside,o utside) static 202.202.202.202 SERvice TCP SSH Object Network 50.30_4172_tcp nat (inside,outside) static 202.202.202.202 service TCP 4172 4 172 Step Three: Access list Access-list 101 extended permit TCP any host 192.168.5 0.30 eq 4172 access-list 101 extended permit UDP any host 192.168.50.30 eq 4172 access-list 101 Extended p         Ermit TCP any host 192.168.50.30 EQ 8443 access-list 101 extended Permit TCP any host 202.202.202.202 eq 8888 Access-list 101 Extended Permit TCP any host 202.202.202.202 EQ 8443 access-list 101 Extended permit UDP any H OST 202.202.202.202 EQ 4172 access-list 101 extended Permit TCP any host 202.202.202.202 eq 4172 access-li St 101 Extended permit TCP any host 192.168.50.30 eq HTTPS fourth step: App list Acce Ss-group 101 in interface outside later tested, where 4172 ports were both TCP and UDP, unexpectedly.         The list section is unexpected and belongs to the test results. The same application if the letter on the day of the configuration, a lot of convenience.


The name destination address for self-outside corresponds to 202.202.202.202,self corresponding to 192.168.50.30. Create a tcp8888.

在华为的USG上更加方便。

    推荐有条件还是选择国产吧,确实方便很多。谢谢

Cisco ASA 8.4 (5) Service port forwarding configuration and tin melt letter, USG configuration diagram

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
cisco asa firewall configuration cisco asa netflow configuration cisco asa 5505 configuration cisco asa configuration example cisco asa 5512 configuration example cisco asa ssl vpn configuration cisco asa 5505 configuration example

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More