Announcement

Collapse
No announcement yet.

Allow RDP and HTTP connection from Outside to Inside Cisco ASA 5510

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Allow RDP and HTTP connection from Outside to Inside Cisco ASA 5510

    I have two Cisco ASA 5510 firewalls (KiA FW and KiB FW), and three servers (KiA, KiB, and KiC).
    Server KiA is connected to the inside interface of KiA FW.
    Server KiB is connected to the inside interface of KiB FW.
    The outside interface of KiA FW, the outside itnerface of the KiB FW, and the Server KiC are connected to the same switch.

    The architecture is attached to this post.

    I want to be able to:
    - ping, RDP, and access the Web Server of Server KiB from Server KiA and KiC
    - ping, RDP, and access the Web Server of Server KiA from Server KiB and KiC
    - ping, and RDP Server KiC from Server KiA and KiB.

    Server KiA:
    IP: 10.197.117.35
    SM: 255.255.255.240
    GW: 10.197.117.46

    Server KiB:
    IP: 10.197.117.3
    SM: 255.255.255.240
    GW: 10.197.117.14

    Server KiC:
    IP: 10.197.117.83
    SM: 255.255.255.240
    GW: 10.197.117.81

    KiA FW:
    IP: 10.197.117.81


    KiB FW:
    IO: 10.197.117.82


    I enabled the tcp/80 and tcp/3389 and icmp ports for outgoing and incoming packets for any ip addresses for the inside and outside interfaces of both

    firewalls.

    Positive Results:
    -From Server KiC, I can RDP, ping, access web of Server KiA.
    -From Server KiC, I can ping 10.197.117.82.
    -From Server KiC, I can ping 10.197.117.81.

    Negative Results
    -From Server KiC, I cannot RDP, ping or access Web Server of Server KiB.
    -From Server KiA, I cannot RDP, ping or access Web Server of Server KiB.
    -From Server KiB, I cannot RDP, ping or access Web Server of Server KiA.

    I found on this forum that a nat rule is needed ( post "Cisco Asa 5510 allowing rdp connections", closed), but I'm not sure which IP address should I put.

    It's strange that I can RDP from Server KiC to Server KiA, but I cannot RDP from KiC to KiB.

    Let me know if giving the Firewalls config would help.
    Attached Files

  • #2
    Re: Allow RDP and HTTP connection from Outside to Inside Cisco ASA 5510

    I don't know what happen, but the RDP/ICMP/HTTP worked.

    I can't really tell, I added a static NAT then removed it.
    Anyway it is solved now.

    Let me know if someone is interested by the FW configuration.

    Comment

    Working...
    X