Cisco ASA Port Forward with ASDM
April 19th, 2010Go to Configuration - NAT. Click the “Add” button and choose “Add Static NAT
Under “Real Address”
Interface : inside
IP Address : 192.168.1.16
Netmask : 255.255.255.255
Under “Static Translation”
Interface : outside
IP Address : <click on the drop down arrow pick list and choose (interface IP)>
Check the box named “Enable Port Address Translation (PAT)”
Protocol : TCP
Original Port : 6500
Translated Port : 6500
Click “OK”
Now, do the above procedure again, filling in all fields with the same info, except choose “UDP” for the protocol when modifying the PAT configuration.
Next, you need to allow the traffic you just specified in your port forwarding
Go to Configuration - Security Policy. Click “Add”.
Under “Interface and
Interface : outside
Direction : incoming
Under “Source”
Type : any
Under “Destination”
Type : <click on the drop down arrow pick list and choose (interface IP)>
Interface : outside
Under “Protocol and Service”
Protocol : tcp
Under “Source Port”, leave all defaults
Under “Destination Port”
Leave “Service” radio button enabled, and where it says “any”, type over this and put in 6500
Click “OK”.
Repeat this procedure with the same values, except under “Protocol and Service”, choose “udp”.
Click “OK”.
That should do it. That will port forward any traffic received on the outside interface on destination port UDP/TCP 6500 and forward it to port UDP/TCP 6500 on internal host 192.168.1.16 from any Internet host.
