How to set up NAT for two servers using same port with ASDM ASA 5505

Similar Messages

• Static NAT to two servers using same port

  I have a small office network with a single public IP address. Currently we have a static nat for port 443 for the VPN. We just received new software that requires the server the software is on to be listening on port 443 across the internet. Thus, essentially I need to do natting (port forwarding) using port 443 to two different servers.
  I believe that the usual way to accomplish this would be to have the second natting use a different public facing port, natted to 443 on the inside of the network (like using port 80 and 8080 for http). But, if the software company says that it must use port 443, is there any other way to go about this? If, for example, I know the IP address that the remote server will be connecting to our local server on, is there any way to add the source IP address into the rule? Could it work like, any port 443 traffic also from x.x.x.x, forward to local machine 192.168.0.2. Forward all other port 443 traffic not from x.x.x.x to 192.168.0.3.
  Any help would be very much appreciated.
  Thanks,
  - Mike                  

  Hi,
  Using the same public/mapped port on software levels 8.2 and below would be impossible. Only one rule could apply. I think the Cisco FWSM accepts the second command while the ASA to my understanding simply rejects the second "static" statement with ERROR messages.
  On the software levels 8.3 and above you have a chance to build a rule for the same public/mapped port WHEN you know where the connections to the other overlapping public/mapped port is coming from. This usually is not the case for public services but in your situation I gather you know the source address where connections to this server are going to come from?
  I have not used this in production and would not wish to do so. I have only done a simple test in the past for a CSC user. I tested mapping port TCP/5900 for VNC twice while defining the source addresses the connections would be coming from in the "nat" configuration (8.4 software) and it seemed to work. I am not all that certain is this a stable solution. I would imagine it could not be recomended for a production environment setup.
  But nevertheless its a possibility.
  So you would need the newer software on your firewall but I am not sure what devce you are using and what software its using.
  - Jouni

• How to set up passwords for two Comcast email accounts on Mail?

  Have Leopard. Cannot set up passwords on Mail for two Comcast email accounts. Does anyone know how to do?

  Hi Paul, & a warm welcome!
  Lineone
  Login
  [email protected]
  Incoming email (IMAP)
  imap.lineone.net
  Incoming email (POP3)
  pop3.lineone.net
  Outgoing email (SMTP)
  smtp.lineone.net
  What port & Authentication are you using?
  Can you login with your credentials in a Browser using the same info?
  In Mail's Window Menu, choose Connection Doctor, any red dots for status, if so what is the exact message?
  Then click the Show Details button & Check again.
  The Password rejection can confuse people since it's a catch all meaning...
  This Password, Username, Authentication method... is not recognized on this Port to this Server, or a server end problem.
  If using a browser to login via WebMail works it's not Name or Password, but one of the other ones.
  The receiving email ports are:
  IMAP is port 143
  IMAP-SSL is port 993
  POP is port 110
  POP-SSL is port 995
  Outgoing ports are...
  SMTP and SMTP-SSL is on ports 25, 587 and 465. Port 587 has to be SSL, and port 465 is enforced TLS-wrapped and is generally used by Outlook users.

• How to set single parameters for two tables?

  SELECT GM.GRNNO,GM.GRNDATE,SUM(GS.APPROVED),SM.ISSUENO,SM.ISSUEDATE,GS.ITEMCODE,SUM(SS.ISSUEDQTY)
  FROM IMS_GRNM GM,IMS_GRNS GS, IMS_ISSUEM SM, IMS_ISSUES SS
  WHERE GM.GRNMSERIAL=GS.GRNSSERIAL
  AND SM.ISSUEMSERIAL=SS.ISSUESSERIAL
  AND GM.POSTED='T'
  AND SM.POSTED='T'
  AND GS.ITEMCODE=SS.ITEMCODE
  AND GS.ITEMCODE='01-01-02-019'
  AND *******
  GROUP BY GM.GRNNO,SM.ISSUENO,GM.GRNDATE,SM.ISSUEDATE,
  GS.ITEMCODE ORDER BY GM.GRNDATE,SM.ISSUEDATE;
  ******* here i have to select the data from both the tables between two parameters named :P_1 and :P_2.
  the date column in IMS_GRNM is named as GRNDATE.
  the date column in IMS_ISSUEM is named as ISSUEDATE.
  how to set such parameters???

  I think all you need is
  Where table1.column1 between :p1 and :p2
  and table2.column2 between :p1 and :p2

• How to set CORS properties for BLOB Storage using node?

  Hi - I just got started with Azure using a Node-based web site and mobile services.
  I am following various documentation in order to provide an API for users to upload images via a time-restricted SAS for the BLOB Storage.
  In order to upload my image, I need to set the CORS configuration for the BLOB Storage. Unfortunately this cannot be done via the management portal.
  I'm unclear as to how to accomplish this. I'm considering using the startup.js file in my mobile service to make a post request to the BLOB Storage REST API:
  http://msdn.microsoft.com/en-us/library/windowsazure/hh452235.aspx
  Are there appropriate methods in the Node SDK to make this easier, especially the signing part?
  What is the recommended way for setting CORS properties for the BLOB Storage via Node?
  Thanks for your help
  Stefan

  Unfortunately Node SDK does not support CORS functionality yet. Your option would be to write code which consumes the REST API for setting CORS. Not sure if it helps but there's a free tool out there written by my company which you can use to set CORS
  on your storage account. More information about this tool can be found here:
  http://blog.cynapta.com/2013/12/cynapta-azure-cors-helper-free-tool-to-manage-cors-rules-for-windows-azure-blob-storage/
  Hope this helps.

• Same certificates for two servers using Sun Java WS 6.1sp5 with Crypto card

  Hi,
  I have 2 Sun java webserver 6.1 sp5 installed on two machines as :
  Single webserver1 instance on hostmachine1
  Single webserver1 instance on hostmachine2.
  (both instance names are same)
  I have created server certificate and installed it using External cryptographic module: Sun Crypto Accelerator 500 on hostmachine1.
  It is perfectly working fine.
  Now,for hostmachine2, I created trust database with same password as for hostmachine1, I copied the two files
  https-webserver1-hostmachine1-key3.db and
  https-webserver1-hostmachine1-cert8.db from hostmachines1 and then put on the hostmachines2 (in an serverroot/alias folder ) and then renamed them as
  https-webserver1-hostmachine2-key3.db and
  https-webserver1-hostmachine2-cert8.db
  Then I went to preferences->Edit socket listen, but security was disabled.
  I restarted the webserver, but security was still disabled.
  What is the problem??
  Please inform me as well as at my email address [email protected]
  Please do reply me as I am waiting anxiously.
  Thanks.
  Taqi

  Hello,
  The problem you are reporting is not expected.
  Hope you are not trying on admin server.
  I am not sure why you removed all files from alias directory.
  Please do the following in a fresh installation:-
  1) install ws6.1sp5.
  2) copy cert and key db from the working systems to the alias
  directory of the instance.
  3) move the db files to the new name (make this name right).
  4) through admin server GUI select instance (Manage server).
  5) go to edit listen socket.
  6) turn on security and select OK.
  7) then press Apply button.
  8) then press Apply changes.
  9) it will restart your instance server and will ask you for the password.
  10) supply the security password of the first server.
  11) it will restart your instance server in https mode.
  This works fine.

• How to set resize effect for border container using flex 4 or 4.5

  Hi friends,
  resize effect works fine for one control (image). if want to same for custom comp, then is not working.
  below is the code is in custom comp,
  <?xml version="1.0" encoding="utf-8"?>
  <s:VGroup xmlns:fx="http://ns.adobe.com/mxml/2009" width="200"
           xmlns:s="library://ns.adobe.com/flex/spark" horizontalAlign="left" verticalAlign="bottom"
           xmlns:mx="library://ns.adobe.com/flex/mx"  xmlns:parsley="http://www.spicefactory.org/parsley"
           xmlns:general="com.presentation.components.general.*">
      <fx:Declarations>
          <parsley:Configure/>
      </fx:Declarations>
      <s:BorderContainer id="bcMain" backgroundColor="#f4f4f4" borderColor="#CDC7C7" borderStyle="solid" borderVisible="true" width="100%">
          <s:layout>
              <s:VerticalLayout horizontalAlign="left" verticalAlign="middle" paddingTop="5" paddingLeft="5" paddingRight="5" paddingBottom="5"/>
          </s:layout>
          <s:HGroup id="hg1" horizontalAlign="left" verticalAlign="middle" width="100%" gap="5"
                    buttonMode="true" useHandCursor="true" >
              <s:Image id="img1" source="@Embed(source='assets/flex.png" width="15" height="17" cachePolicy="on" cacheAsBitmap="true"/>
              <s:Label text="label 1" textAlign="center"/>
          </s:HGroup>
          <mx:HRule width="100%"/>
          <s:HGroup horizontalAlign="left" verticalAlign="middle" width="100%" gap="10">
              <s:BorderContainer id="bc1" width="35" useHandCursor="true" buttonMode="true"
                        backgroundColor="#f4f4f4" height="40">
                  <s:layout>
                      <s:VerticalLayout horizontalAlign="center" verticalAlign="middle"/>
                  </s:layout>
                  <s:Image id="img2" source="@Embed(source='assets/flex.png" cachePolicy="on" cacheAsBitmap="true"/>
                  <s:Label text="label 2" textAlign="center"/>
              </s:BorderContainer>
              <s:BorderContainer id="bc2" width="35" useHandCursor="true" buttonMode="true"
                        backgroundColor="#f4f4f4" height="40">
                  <s:layout>
                      <s:VerticalLayout horizontalAlign="center" verticalAlign="middle"/>
                  </s:layout>
                  <s:Image id="img3" source="@Embed(source='assets/flex.png" cachePolicy="on" cacheAsBitmap="true"/>
                  <s:Label text="label 3" textAlign="center"/>
              </s:BorderContainer>
              <s:BorderContainer id="bc3" width="35" useHandCursor="true" buttonMode="true"
                        backgroundColor="#f4f4f4" height="40">
                  <s:layout>
                      <s:VerticalLayout horizontalAlign="center" verticalAlign="middle"/>
                  </s:layout>
                  <s:Image id="img4" source="@Embed(source='assets/flex.png" cachePolicy="on" cacheAsBitmap="true"/>
                  <s:Label text="label 4" textAlign="center"/>
              </s:BorderContainer>
          </s:HGroup>
      </s:BorderContainer>
  </s:VGroup>
  I followed how resize effects works for image control,
  <mx:Resize id="expand" target="{img}" widthTo="100" heightTo="200"  duration="2000"/>
          <mx:Resize id="contract" target="{img}" widthTo="30" heightTo="60"  duration="2000"/>
  <s:Panel title="Resize Effect Example" width="100%" height="100%">
          <s:VGroup width="100%" height="200" horizontalAlign="left" verticalAlign="bottom">           
              <mx:Image id="img" source="@Embed(source='assets/05_ipad.png')" width="10" height="10"/>
              <mx:Button label="Expand" click="expand.end(); expand.play();"/>
              <mx:Button label="Contract" click="contract.end(); contract.play();"/>
          </s:VGroup>
      </s:Panel>
  Please help me.

  BorderContainer wont resize if the fixed width is specified, if u want to give some minimum width you can use minWidth . Give  Width = "100%", now it will get Resizing capabilities

• How to set a reason for locked account throught source code with the API

  Hi all,
  I need to set the lock reason of an user account. When we lock a user account at identity management, the system shows us a text edit and keep that lock reason on the account data tab. I need to simulate that, anybody could help me with this?
  Slds,
  MC

  Hi Mariana,
  you can use the below code snippet to lock and maintain the lock reason.
                IUserAccountFactory uaFactory= UMFactory.getUserAccountFactory();
                IUserAccount userAccount=uaFactory.getUserAccountByLogonId("user_hr");
                IUserAccount mutableUserAccount=uaFactory.getMutableUserAccount(userAccount.getUniqueID());
                mutableUserAccount.setLocked(true,IUserAccount.LOCKED_BY_ADMIN);
                mutableUserAccount.commit();
  Thanks
  Prashant

• Search results different for two machines on same network with same version of Lync (2013)

  When searching by Department in Lync 2013, one machine displays the individuals who are members of the department while the other machine just lists the group.  The same machine that displays just the group occasionally will not show contact information
  (work phone, department, title) for individuals either but the other machine will.  Two different Windows 7 machines but running Office 365 Lync 2013 client on the same network.  I have cleared Lync cache and downloaded the latest address book. Any
  thoughts on this? 
  Thanks,
  JARED

  This isn't an explanation for what's happening, there could be many things wrong.  But, it might be worth a shot to avoid the offline GAL search and go to an online web search only.  This may get you more consistent results.
  To test, create a new policy and assign it to a couple of users like this:
  New-CsClientPolicy -Identity WebSearchClientPolicy -AddressBookAvailability WebSearchOnly
  Grant-CsClientPolicy -Identity UserA -PolicyName WebSearchClientPolicy
  Grant-CsClientPolicy -Identity UserB -PolicyName WebSearchClientPolicy
  If that works, you could change your global and other client policies to use the same method.  There would be a bit more of a load on the server, so if you have thousands and thousands of users you may want to plan accordingly.
  Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
  SWC Unified Communications

• How do I share Itunes between two ipods useing same account?

  My mom and I want to share my itunes. I have an Ipod shuffle and she have an Ipod nano. My mom just got her first Ipod. I'v had mine years before her. So I already have my itunes account and everything. I know how to share the music and create playlist and libraries. The only problem I have is that the itunes and computer don't recognise my mom's ipod. If they don't recognise my mom's ipod she can't download music. So how do I get the itunes and computer to  recoginses my mom's ipod and my ipod on the same account?

  have a look at this support article.
  also check out How to use multiple iPods, iPads, or iPhones with one computer.

• HT1386 How can I have two seperate sets of Playlists for two different iPods on one computer?

  How can I have two seperate sets of Playlists for two different iPods, on the same PC?

  Open itunes.
  Make whatever playlists you each like.
  Connect one ipod, select only what you want, sync
  Do the same for the other ipod

• How to Break the cluster between Two servers

  Hi Experts,
  Since Iu2019m new to BOBJ XI R2.I would like to know how to break the cluster between two servers.
  Description :
  So far we took the copy of QAS Server1 to the new QAS server2 (Through Mirroring Tool ). Now those two servers are cluster together, I can see QAS server1 CMS Name, Cluster Name, cluster member name in QAS Server2 (CMC-> Setting -> Cluster).
  Besides in QAS Server1 CMS Name and Cluster name are pointing to the QAS Server1, except Cluster Member (This is still have two members Server1 and Server2).(CMC-> Setting -> Cluster).
  In QAS Server1 and QAS Server2 (CMS-> Servers), I can able see both server name under Machine Name tab.
  I would like to make those two servers as independent servers. There are two different data source for those two servers. I want to remove the cluster in both servers.
  Right now QAS Server1 is running and QAS Server2 is stopped.
  If i create/modify a group under new Mapped NT Member Groups in QAS server2 ,it is getting reflecting in QAS server 1.
  Could you please tell me the steps to resolve this problem.
  BO Version: BO XI R2
  Regards,
  Sridharan

  Hi,
  Maybe the external CMS is still 'attached' to your SIA node. Please go to the CCM (Central Configuration Manager) and stop the SIA (Server Intelligent Agent). On one of the tabs you can see if there is an external CMS part of your environment. Delete it and restart the SIA. Retry if you can delete the services now from within your CMS. It may well be that you have to stop both environments and delete each others CMS via the CCM to get it working. If you have not changed any permissions for your Administrator account the security model will not be the one causing this.
  Hope this helps...
  Martijn van Foeken
  Focuzz BI Services
  http://www.focuzz.nl
  http://nl.linkedin.com/in/martijnvanfoeken

• How to set up  Planning on Multiple Servers

  Hi,
  1) I am trying to install a Finance Planning application so that it runs on one Planning Web Server and the other operations Planning application on another Planning 9.3.1 web server. Is that possilbe?
  2) May be unrelated question:
  HP_Windows_Install.pdf has only a few lines explaining how to set up Planning on Multiple Servers. Is it as simple as that?
  Here are the "few lines" from install.pdf:
  Perform the same installation and configuration process on your secondary servers, making sure to choose
  Planning Web Server component for any secondary server.
  Make sure you select Reuse existing tables when prompted during the Configure a Database task
  in the Configuration utility.

  Tomcat.
  But it will be nice to know the steps for Weblogic too - as Weblogic will be bundled "free" with future releases of Planning.

• How to create a calendar for two years in GL

  how to create a calendar for two years in GL

  Hi,
  - Login into Oracle EBS and select a responsiblity with GL Superuser drants (e.g. General Ledger Super User)
  - Navigate to Setup + Financials + Calendars and open the GUI Accounting (Navigation for R12)
  - Query the used calendard (used from jour Set of Books/ Ledger via the GUI
  - Enter for each Period (= Period Type 13, 16, 18,...) one Record, have a look to the existing data, used the same logic.
  In the GUI, defined the calendar for 2 Years
  Dirk

• How e-mail is routed between two servers

  Hi ,
  Please anybody tell me how e-mail is routed between two servers , from the software point of view as well as hardware point of view .
  And how Java mail API related to that .
  Thanks,
  Kiz

  If you're looking for a simple answer there isn't one. Here's a place to start.
  http://community.roxen.com/developers/idocs/rfc/rfc974.html