How Some Companies Do Support

  • Subscribe to our RSS feed.
  • Twitter
  • StumbleUpon
  • Reddit
  • Facebook
  • Digg

Monday, 13 October 2008

Configure RDP Port Forwarding on a Cisco ASA 5505

Posted on 15:46 by Unknown
Share/Save/Bookmark




Cisco ASA5505
For those of you searching the Internet to try and find a good or simple example of how port forwarding is done on a Cisco ASA 5500 series firewall (in this example, it is a Cisco ASA 5505 version 7.2) This post contains a working example of a port forwarding configuration on a Cisco ASA 5505 that's allowing RDP, TCP port 3389, through the firewall to from the Internet to the LAN side to a server. For new users to the ASA, how to configure a port forwarding rule on a Cisco ASA 5505 can be a more easily accomplished if the working configuration of a working ASA5505 is viewed. For many of the more seasoned users of the Cisco security appliance, port forwarding is very easy and need not be searching for answers.

Since the RDP protocol and the services running on windows XP and Vista client machines are derivatives of Microsoft's Terminal Server, the proceedure for setting up a port forward configuration for Microsoft terminal server is the same. The Cisco ASA5505 is not concerned what you are connecting to behind it, it's just concerned that its own configuration allows the right data and connection to go through.

Below is a GUI shot of a working RDP (Terminal Server) port forward configuration running on a Cisco ASA 5500 series firewall. The TCP port number 3398 is forwarded from the outside interface that's part of VLAN2 to the inside interface that's part of the VLAN1.

!
interface Vlan1 nameif
inside security-level 100
ip address 192.168.1.1 255.255.255.0
!
interface Vlan2 nameif
outside security-level 0
ip address dhcp setroute

Using the example below, just swap out the ip addresses shown in the static NAT translation for port forwarding RDP (terminal Server) with your own and you have a connection from the Internet to the LAN.






If you prefer command line, it's three lines of code at the command line that will do a simple port forwarding for RDP on the Cisco ASA.

Here they are:

access-list outside_access_in extended permit tcp any interface outside eq 3389
static (inside,outside) tcp interface 3389 192.168.1.10 3389 netmask 255.255.255.255
access-group outside_access_in in interface outside

Obviously, if you are looking to use the lines of code shown in the example above, change the 192.168.1.10 ip address shown above to be the address of the computer or server your forwarding RDP (terminal server) port to connect to. You can essentially use this example for terminal server RDP or for any other forwarding requirement you may have like ftp, http,smtp, etc.


Link to this post:

http://remotesupportsoftware.blogspot.com/2008/10/configure-rdp-port-forwarding-on-cisco.html

Link to this blog:

http://remotesupportsoftware.blogspot.com


Email ThisBlogThis!Share to XShare to FacebookShare to Pinterest
Posted in 5505, ASA.5500, cisco, port forward, RDP, terminal server, windows | No comments
Newer Post Older Post Home

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Popular Posts

  • Adding dsa.msc on Windows 2008 Server
    How to add dsa . msc to windows 2008 server If you wanted to access active directory users and computers from a member 2003 server it was ...
  • (no title)
    VPNet Introduces Powerful New Remote Client VPNremote 3.0 offers service providers and enterprises a unique remote access solution that prov...
  • Configure RDP Port Forwarding on a Cisco ASA 5505
    Cisco ASA5505 For those of you searching the Internet to try and find a good or simple example of how port forwarding is done on a Cisco AS...
  • (no title)
    How Some Companies Do Support. Microsoft delays release of Vista...
  • VMWare - Virtualization Support
    vmware.com Virtualization Support The VMware Support team provides a range of support offerings backed by industry-leading expertise in virt...
  • IE9 Meet Your New Browser Welcome Page Tab Opens When IE9 Starts
    IE9 Meet Your New Browser Welcome Page Tab Opens When IE9 Starts This is a very interesting post. It involved IE9 and the Meet your new brow...
  • (no title)
    Dell is innovative and always looking to stay ahead... Windows 2000 Datacenter Software Support Service Windows 2000 Datacenter Software Su...
  • Catastrophic Failure Message Display During Installation
    Catastrophic failure for feature mini driver when installing, re-installing or removing the Fujitsu Windows scanning software. If you get th...
  • HP NC373i: The network link is down
    This error would appear in the system log of the server almost everyday in the morning - HP NC373i: The network link is down . Never during...
  • Microsoft Live Meeting - Easy Assist Tech Support
    Microsoft LiveMeeting Prior Post: Computer Support - Adventure (Rated PG): Computer Remote Support Software LiveMeeting Demo: http://office....

Categories

  • (AH627A)
  • 16 bit
  • 2 CH
  • 2003
  • 2008
  • 24 bit
  • 2950
  • 5505
  • AD
  • application
  • ASA.5500
  • catastrophic
  • cisco
  • collaboration
  • color
  • colour
  • computer
  • conferencing
  • Control
  • Control remote
  • Controller
  • customer
  • customer support
  • Dell
  • desktop
  • destkop
  • diagnosis
  • diagnostic
  • down
  • download
  • dsa.msc
  • easy assist
  • encryption
  • express
  • fujitsu
  • hardware
  • Hewlett
  • hotfixes
  • HP
  • ie9
  • IKE
  • infrastructure
  • internet
  • kaseya
  • l2nd
  • link
  • linux
  • live meeting
  • malware
  • manage
  • management
  • memory
  • microsoft
  • NBBS
  • NC373
  • net
  • netopia
  • network
  • on-line
  • online meetings
  • OS
  • Packard
  • pc
  • PCI Express x8
  • Plug-in card
  • port forward
  • PowerEdge
  • r2
  • RDP
  • rds
  • remote
  • remote administration
  • removal
  • scanner
  • security
  • Server
  • slow
  • software
  • sonicwall
  • sp3
  • spyware
  • Storage
  • StorageWorks
  • support
  • support server communications operating
  • symantec
  • system
  • tab
  • tech
  • terminal server
  • tunnel
  • U320e
  • Unix
  • users and computers
  • virtualization
  • virus
  • vista
  • vmware
  • vpn
  • windows
  • XP

Blog Archive

  • ►  2012 (1)
    • ►  January (1)
  • ►  2010 (1)
    • ►  December (1)
  • ►  2009 (3)
    • ►  December (1)
    • ►  November (1)
    • ►  October (1)
  • ▼  2008 (9)
    • ▼  October (1)
      • Configure RDP Port Forwarding on a Cisco ASA 5505
    • ►  May (4)
    • ►  February (3)
    • ►  January (1)
  • ►  2007 (2)
    • ►  June (1)
    • ►  April (1)
  • ►  2006 (18)
    • ►  December (1)
    • ►  July (2)
    • ►  May (2)
    • ►  April (5)
    • ►  March (2)
    • ►  February (3)
    • ►  January (3)
  • ►  2005 (8)
    • ►  December (8)
Powered by Blogger.

About Me

Unknown
View my complete profile