Friday, February 28, 2020

Publishing internal server using port forwarding on ASA

Hi,

i have a server that i want to publish so that outside users can access it, so i want to port forward from public ip to the internal server, so when the users outside write https://<public ip>, they will directs them to the server which has an ip of 172.16.12.7

so what i did is on the ASA is that i configured an interface with an ip of 172.16.12.220, and this interface is connected with a cable to a core switch that has a port in a vlan of such subnet, and the coreswitch is connected to other L2-switches where then connected to servers

then i configured this nat on the ASA:

object network serverpublish

host 172.16.12.7

nat (FwInsideServer,FwoutTerra) static 1.1.1.2

access-list OUTSIDE_IN permit tcp any host 172.16.12.7 eq 443

access-group OUTSIDE_IN in interface FwoutTerra

and the interface on the ASA is:

interface GigabitEthernet1/6

nameif FwInsideServer

security-level 65

ip address 172.16.12.220 255.255.255.0

but i couldn't access the server from outside, is there something missing or anything wrong?

can you please help me?

thanks in advance!



No comments:

Post a Comment