E the, Single address for ftp, http, and smtp (static – Cisco ASA 5505 User Manual

Page 600

30-18

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 30 Configuring Network Object NAT

Configuration Examples for Network Object NAT

hostname(config)# object network myPublicIPs

hostname(config-network-object)# range 209.165.201.3 209.265.201.8

Step 2

Create a network object for the load balancer:

hostname(config)# object network myLBHost

Step 3

Define the load balancer address:

hostname(config-network-object)# host 10.1.2.27

Step 4

Configure static NAT for the load balancer:

hostname(config-network-object)# nat (inside,outside) static myPublicIPs

Single Address for FTP, HTTP, and SMTP (Static NAT-with-Port-Translation)

The following static NAT-with-port-translation example provides a single address for remote users to
access FTP, HTTP, and SMTP. These servers are actually different devices on the real network, but for
each server, you can specify static NAT-with-port-translation rules that use the same mapped IP address,
but different ports. (See

Figure 30-4

Figure 30-4

Static NAT-with-Port-Translation

Step 1

Create a network object for the FTP server address:

hostname(config)# object network FTP_SERVER

Host

Outside

Inside

Undo Translation

10.1.2.27

209.165.201.3:21

Undo Translation

10.1.2.28

209.165.201.3:80

Undo Translation

10.1.2.29

209.165.201.3:25

FTP server

10.1.2.27

HTTP server

10.1.2.28

SMTP server

10.1.2.29

130031

This manual is related to the following products:

ASA 5585-X ASA 5555-X ASA 5545-X ASA 5525-X ASA 5515-X ASA 5512-X ASA 5580 ASA 5550 ASA 5540 ASA 5520 ASA 5510 ASA 5500 Series