Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: Port config on ASA 5505

Port config on ASA 5505 7 years 5 months ago #30629

  • Five
  • Five's Avatar
  • Offline
  • New Member
  • Posts: 2
  • Karma: 0
Hi !

Im pretty new on this so please be patient with me.

I used to have a D-Link router/firewall but it broke so i got an ASA 5505. I have a 30Mb cable internet connection. The ASA gets the external ip-address from via DHCP from the ISP. My internal network is 192.168.1.0/24.

I have a game server 192.168.1.10 that is hosting a game on tcp-port 29003. On my D-link i just opened that port and pointed it at the server but now im totally lost.

Can someone please tell me how to open up that port so that gamers will be able to access it from the internet ?

I can add that i have tried reading the howtos at Cisco.com but that only made me more confused :oops:

All help will be gladly accepted.

Thank you !
The administrator has disabled public write access.

Re: Port config on ASA 5505 7 years 5 months ago #30632

  • sys-halt
  • sys-halt's Avatar
  • Offline
  • Frequent Member
  • Posts: 68
  • Karma: 0
I have no previews experience with ASA 5505 and such scenario. I only faced port forwarding with static assigned IP address to ASA5505.

Here is what is required if it has a static fixed external IP to forward request to internal Bastion Host:

1. Create Access List
2. Create conduit
3. Assign Access List to the Outside Interface

example:
External IP address on Outside Interface: 172.16.1.1
Internal IP Address on DMZ/Inside Interface; 192.168.1.10

[code:1]
ASA>enable
ASA#configure terminal
ASA(config)#access-list 101 extended permit tcp any host 192.168.1.10 eq 29003
ASA(config)#static (inside,outside) 172.16.1.1 192.168.1.10 netmask 255.255.255.255
ASA(config)#access-group 101 in interface outside
[/code:1]

I hope I am not wrong with my example, long time for such configuration, but I hope this might be helpful to you in some way or to give you some insight.

good luck
The administrator has disabled public write access.

Re: Port config on ASA 5505 7 years 5 months ago #30642

  • Five
  • Five's Avatar
  • Offline
  • New Member
  • Posts: 2
  • Karma: 0
sys-halt:
I will try you config and get back. Thank you very much. :D

edit:
I got some problem with the "static-thing" since the external address can change.

Here is a description of what i want to do:

The administrator has disabled public write access.

Re: Port config on ASA 5505 7 years 4 months ago #31367

  • faisal4u2
  • faisal4u2's Avatar
  • Offline
  • New Member
  • Posts: 4
  • Karma: 0
You need to purchase static ip address there is no other way
The administrator has disabled public write access.

Re: Port config on ASA 5505 7 years 3 months ago #31445

  • devmonkey
  • devmonkey's Avatar
  • Offline
  • New Member
  • Posts: 2
  • Karma: 0
... or just use the "interface" tag when referring to the external IP address. This will pull the active IP address from the named interface (eg, inside or outside depending on your rules).

[code:1]ASA>enable
ASA#configure terminal
ASA(config)#access-list 101 extended permit tcp any host 192.168.1.10 eq 29003
ASA(config)#static (inside,outside) tcp interface 29003 192.168.1.10 29003 netmask 255.255.255.255
ASA(config)#access-group 101 in interface outside
[/code:1][/code]
The administrator has disabled public write access.
Time to create page: 0.083 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup