Firewall
Firewall and NAT Rule Configuration Examples
STEP 1
STEP 2
STEP 3
Cisco ISA500 Series Integrated Security Appliances Administration Guide
Source Address
Destination Address
Match Action
When you create the port forwarding rule, you can check Create Firewall
NOTE
Rule to automatically generate the firewall rule.
Allowing Inbound Traffic Using a Public IP Address
Use Case: You host an RDP server on the DMZ. Your ISP has provided a static IP
address that you want to expose to the public as your RDP server address. You
want to allow Internet user to access the RDP server by using the specified public
IP address.
Solution 1: Perform the following tasks to complete the configuration:
Go to the Networking > Address Management page to create a host address
object with the IP 192. 1 68. 1 2. 1 01 called "RDPServer" and a host address object
with the IP 172.39.202. 1 02 called "PublicIP."
Go to the Networking > Service Management page to create a TCP service object
with the port 3389 called "RDP."
Go to the Firewall > NAT > Port Forwarding page to create a port forwarding rule
as follows.
Original Service
Translated Service
Translated IP
WAN
WAN IP
Enable Port
Forwarding
Create Firewall Rule
ANY
InternalFTP
Permit
RDP
RDP
RDPServer
WAN1
PublicIP
On
On
6
228