Making webserver on 8080 available to the outside on 80

Hi there,
Sorry for "spamming" this forum but we're new to the ASA and really want to get the most out of it.
We're running three networks (inside, outside and dmz). Inside is 10.0.1.0/24, dmz is 10.0.2.0/24, outside is a static ip allocated by our ISP. We'd like to configure the following:
All traffic from the outside to [static provider ip] on port 80 should go to 10.0.2.200 port 8080.
What do we have to configure to do so?

Hi,
I think below link can hen help you better!!!
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a00804708b4.shtml
Raj

Similar Messages

  • When will iPhone6 Plus be available unlocked for outside the US?

    When will iPhone6 Plus be available unlocked for outside the US?

    You can buy a T-Mobile model from an Apple Store and it is unlocked or a full-price no contract Verizon iPhone is unlocked on the GSM side. Whether you buy one of these or wait for the unlocked model (last time Apple didn't announce their availability they just showed up one day) you will have to return to the US for warranty service.

  • Can I develop an iOS app that can download multiple free iBooks that I publish and make them available within the iBooks app?

    Is it possible for a self-developed iOS app to download iBooks from our server and make the books available to the iBooks app?
    My organization is evaluating publishing some free training manuals / textbooks as iBooks made with Apple's "iBooks Author" software. We don't necessarily want to use the iTunes Store for distribution because of the semi-sensitive nature of the content. To distribute the books to users with iPads, we've thought of using MDM software, a webpage, or an iOS app. The reasoning behind an iOS app is that the app would be a "download manager", making it much easier for a user to download all 42 books all at once. A user would install our "free training manual download manager" iOS app and use it to authenticate to a our server app that would serve the books, the end result being the books available via the iBooks app.
    Thanks,
    Ted

    Hi Kappy,
    Actually Apple lets self-publishers distribute iBooks outside of the iTunes Store, as long as the iBooks are free (no cost to user).
    What I'm wondering is if it's possible for a custom iOS app to side-load iBooks so that they're available to a user within the iBooks app.
    If not, we'll either post the iBooks for download from our website or we'll use MDM software to push the iBooks to MDM-enrolled iPads.
    Ted

  • Reaching Tomcat from the outside

    I've just installed tomcat on my Win2000Pro box. Wish I had a Win2000Server though.
    I wanna reach it from the outside.
    This
    http://localhost:8080 gives me tomcat
    This though
    http://321.321.321.321:8080
    doesn't give me anything! (Let's assumes my ip is 321.321.321.321)
    What do I need to do in order to serve the entire net?
    Duke dollars to the first who gives me a valid tip.
    Morten Hjerl-Hansen

    When tomcat is running it is acting as a webserver on port 8080 (by default). So if it is not serving documents from other computers in your LAN, WAN or whatever, the problem is not with tomcat but with the network set-up itself.
    Can you ping 321.321.321.321?
    The only thing I can think of why this is not working is that you changed server.xml and setup one or more virtual hosts(With the Host directives) but failed to setup 321.321.321.321 also. Is this the case?
    Ylan

  • How do I block pings from the outside to the ASA 5505 outside interface?

    I was asked to block pings from the internet to the outside interface of our ASA-5505 firewall.  I found a post that said to enter "icmp deny any outside", however that does not do it.
    I created an ACL to try and do the trick, also to no avail:
    access-list outside_in extended permit icmp any any echo-reply
    access-list outside_in in interface outside
    access-group outside_in in interface outside
    Anyone have a clue what I'm doing wrong?  I'm not the firewall guy as you can tell.  :/
    Thanks in advance...
    Block / Deny ICMP Echo (Ping) on Cisco ASA Outside Interface
    Most networks that you protect with a Cisco ASA device, will probably want to deny ICMP (maybe not all ICMP types, but a lot of network admins will want to block ICMP Echo, etc.) on the outside interface. This will make the network harder to find through external enumeration, but not impossible.
    ASA5505(config)#icmp deny any outside
    You will deny ICMP on the outside interface, but if you include ICMP as a protocol in the default global policy map, you can ping from the inside to any host on the outside, and it will be permitted back through the ASA, as it knows about the previous ICMP “connection

    You are allowing echo-reply, thus it will reply to a ping
    try this ACL:
    icmp deny any echo-reply outside
    From: 
    https://supportforums.cisco.com/thread/223769
    Eric

  • I signed up for my apple account while living in Canada, and now I lives in the US. I am looking for a specific app that apparently is only available through the US app store. How can I change my account to the US Apple Store?

    I signed up for my apple account while living in Canada, and now I lives in the US. I am looking for a specific app that apparently is only available through the US app store. How can I change my account to the US Apple Store?

    As long as you have a form of payment (credit or debit card) with a USA source, and with a billing address in the USA, then you just need to change your payment information on your account to that, change your country in the store settings, and you will then be able to shop in the USA store.
    Your AppleID will work in any country's store, as long as your payment source and billing addres are also specific to that country (and you are in that country as well, as there may be IP filters in place to stop use outside of the country).

  • Why isn't Lee Greenwood's God Bless you Canada available in the Itunes? store?  It is the Canadian store afterall.  All of Justin Beiber's crap is on here and he screwed up his life!

    I just want to know why Lee Greenwood's God bless Canada is not available in the the CANADIAN Itunes store?  All of Justin Beiber's crap is on here and he screwed his life.  His loser mother is making money off his sucess and wrote a trashy book.  To top that off, she had the nerve to sell it in CHRISTIAN book stores.  There is nothing CHRISTIAN about that book.  I have not read it myself but a good friend of mine has and she told me about it.  I was like WTH?

    You would have to ask whomever owns the Canadian distribution rights to the song.
    Itunes can only sell what the owners of the ditribution rights allow/provide them to sell.

  • New report confirms Samsung is making an absolutely crazy version of the Galaxy S6

    The new S6, glass and metal loaded with RAM, can it be?
    New report confirms Samsung is making an absolutely crazy version of the Galaxy S6

    It won't be sold anywhere but Korea. Not many places outside of Korea are people willing to spend 1k+ for a niche device.

  • There is no server available at the address you entered, codes: 25294, 9848

    About a month ago I rebooted the server and after that Server Admin hasn't worked. It says always: "There is no Server available at the address you entered".
    In /var/log/system.log:
    Jul 22 11:58:51 mail servermgrd[14205]: SecIdentitySearchCopyNext returned -25294.
    Jul 22 11:58:51 mail servermgrd[14205]: Got error -9848 for SSLHandshake
    Jul 22 11:58:51 mail servermgrd[14205]: Exception in threadListen: Socket: Connect failed
    From http://developer.apple.com/documentation/Security/Reference/certifkeytrustservic es/Reference/reference.html:
    errSecNoSuchKeychain –25294 The keychain does not exist.
    From http://developer.apple.com/documentation/security/Reference/secureTransportRef/R eference/reference.html:
    errSSLBadConfiguration –9848 A configuration error occurred.
    I have also bootable backup on another disk in which Server Admin is working. I have compared files from /etc, /Library/Preference and /var/servermgrd without finding really relevant differences. Are there other places I should seek?
    On some point I have changed host name. Could that cause certificate error in this case? I have checked with "sudo changeip -checkhostname" that names matches.
    I have tried making servermgrd to use regular connection instead of SSL by editing /Library/Preferences/com.apple.servermgrd.plist. After changing settings, I have killed or unloaded/loaded servermgrd and tested with lsof that proper port is working. But I guess Server Admin doesn't even try to connect to port 687. Is it possible to force Server Admin to connect port 687. E.g. writing "localhost:687" as address didn't worked.
    I have tried creating servermgrd.conf, ssl.crt/ and ssl.key/ to /etc/servermgrd/ even thought they weren't there originally.
    I have tried connecting with many different IPs and DNS names and done as instructed here http://support.apple.com/kb/TS2757. According lsof, ports 678 and 660 are not in use normally.
    I have tried moving/trashing /var/servermgrd/ and ~/Library/Preferences/com.apple.ServerAdmin.plist.
    I have tried stopping ipfilter.
    Is it possible find out that which certificate servermgrd is trying to use?
    What else I could try? The server is currently running email and web services among other things with many users, so therefore I can't try too rough methods.

    Little progress maybe...
    I tested Server Admin of the working backup while using "sudo fs_usage -f filesys <PID>".
    When I did same with the actual nonworking server I noticed this difference:
    18:53:09 statfs private/var/root/Library/Keychains 0.000010 servermgrd
    18:53:09 open private/var/root/Library/Keychains>>>>>>>>>> 0.000008 servermgrd
    Path /var/root/Library/Keychains does not exists and backup system doesn't seems to try to use it. I suspect that "errSecNoSuchKeychain –25294 The keychain does not exist" occurs because of this.
    Any hints to fix this?

  • The Managed Metadata Service or Connection is currently not available. The Application Pool or Managed Metadata Web Service may not have been started. Please Contact your Administrator.

    Hi,
    I'm not able to access the term store. I get an below mentioned error.
    "The Managed Metadata Service or Connection is currently not available. The Application Pool or Managed Metadata Web Service may not have been started. Please Contact your Administrator. "
    Since this is happening on my local machine (Dev environment). I have full control on the term store and the all the site collections.
    Hence, this is not a permission issue.
    I have checked, the Metadata service is active on the machine. All the application pools in IIS is running.
    After reading one of the recommendation on internet, I created a new Managed Metadata Service.
    After which I was able access both (old and new) MMS from Central Admin only (highlight the MMS from manage service applications and click Manage ) and not from the site collection (term store management).
    Now again its not working after I did an IISRESET.
    The managed metadata service (Managed Metadata Service Connection) is grayed out.
    ULS Error says:
    Failed to create ManageLink for service proxy 'Managed Metadata Service'. Exception: System.TimeoutException: The request channel timed out attempting to send after 00:00:09.9999999. Increase the timeout value passed to the call to Request or increase the SendTimeout
    value on the Binding. The time allotted to this operation may have been a portion of a longer timeout. ---> System.TimeoutException: The HTTP request to 'http://mitkar4:32843/7a91ec90b46843e995c144be48d804f0/MetadataWebService.svc' has exceeded the allotted
    timeout of 00:00:09.9990000. The time allotted to this operation may have been a portion of a longer timeout. ---> System.Net.WebException: The operation has timed out 
    Please let me know if you need more information.

    Hi Victoria,
    Thanks for your reply
    I tried making all the changes you had recommended and which are mentioned in the link you have provided.
    I tried making all possible combination of changes to the web.config and client.config files but it does not make any difference to the environment.
    One thing is that, my error in ULS logs has changed.
    Error 1: 
    Exception returned from back end service. System.TimeoutException: The request channel timed out attempting to send after 00:00:09.9999999. Increase the timeout value passed to the call to Request or increase the SendTimeout value on the Binding. The time allotted
    to this operation may have been a portion of a longer timeout. ---> System.TimeoutException: The HTTP request to 'http://mitkar4:32843/b1640facdf8b49b0886fea1bd37b8eb3/MetadataWebService.svc' has exceeded the allotted timeout of 00:00:09.9990000. The time
    allotted to this operation may have been a portion of a longer timeout. ---> System.Net.WebException: The operation has timed out 
        at System.Net.HttpWebRequest.GetRequestStream(TransportContext& context) 
        at System.Net.HttpWebRequest.GetRequestStream() 
        at System.ServiceModel.Channels.HttpOutput.WebRequestHttpOutput.GetOutputStream()     --- End of inner exception stack trace --- 
        at System.ServiceModel.Channels.HttpOutput.WebRequestHttpOutput.GetOutputStream() 
        at System.ServiceModel.Channels.HttpOutput.Send(TimeSpan timeout) 
        at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.SendRequest(Message message, TimeSpan timeout) 
        at System.ServiceModel.Channels.RequestChannel.Request(Message message, TimeSpan timeout)     --- End of inner exception stack trace ---    Server stack trace:  
        at System.ServiceModel.Channels.RequestChannel.Request(Message message, TimeSpan timeout) 
        at System.ServiceModel.Channels.SecurityChannelFactory`1.SecurityRequestChannel.Request(Message message, TimeSpan timeout)     at System.ServiceModel.Dispatcher.RequestChannelBinder.Request(Message message, TimeSpan timeout) 
        at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout) 
        at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation) 
        at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)    Exception rethrown at [0]:  
        at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg) 
        at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type) 
        at Microsoft.SharePoint.Taxonomy.IMetadataWebServiceApplication.GetServiceSettings(Guid rawPartitionId) 
        at Microsoft.SharePoint.Taxonomy.MetadataWebServiceApplicationProxy.<>c__DisplayClass2f.<ReadApplicationSettings>b__2e(IMetadataWebServiceApplication serviceApplication) 
        at Microsoft.SharePoint.Taxonomy.MetadataWebServiceApplicationProxy.<>c__DisplayClass2c.<RunOnChannel>b__2b()
    Error 2:
    Error encountered in background cache check System.TimeoutException: The request channel timed out attempting to send after 00:00:09.9999999. Increase the timeout value passed to the call to Request or increase the SendTimeout value on the Binding. The time
    allotted to this operation may have been a portion of a longer timeout. ---> System.TimeoutException: The HTTP request to 'http://mitkar4:32843/b1640facdf8b49b0886fea1bd37b8eb3/MetadataWebService.svc' has exceeded the allotted timeout of 00:00:09.9990000.
    The time allotted to this operation may have been a portion of a longer timeout. ---> System.Net.WebException: The operation has timed out 
        at System.Net.HttpWebRequest.GetRequestStream(TransportContext& context) 
        at System.Net.HttpWebRequest.GetRequestStream() 
        at System.ServiceModel.Channels.HttpOutput.WebRequestHttpOutput.GetOutputStream()     --- End of inner exception stack trace --- 
        at System.ServiceModel.Channels.HttpOutput.WebRequestHttpOutput.GetOutputStream() 
        at System.ServiceModel.Channels.HttpOutput.Send(TimeSpan timeout) 
        at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.SendRequest(Message message, TimeSpan timeout) 
        at System.ServiceModel.Channels.RequestChannel.Request(Message message, TimeSpan timeout)     --- End of inner exception stack trace ---    Server stack trace:  
        at System.ServiceModel.Channels.RequestChannel.Request(Message message, TimeSpan timeout) 
        at System.ServiceModel.Channels.SecurityChannelFactory`1.SecurityRequestChannel.Request(Message message, TimeSpan timeout)     at System.ServiceModel.Dispatcher.RequestChannelBinder.Request(Message message, TimeSpan timeout) 
        at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout) 
        at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation) 
        at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)    Exception rethrown at [0]:  
        at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg) 
        at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type) 
        at Microsoft.SharePoint.Taxonomy.IMetadataWebServiceApplication.GetServiceSettings(Guid rawPartitionId) 
        at Microsoft.SharePoint.Taxonomy.MetadataWebServiceApplicationProxy.<>c__DisplayClass2f.<ReadApplicationSettings>b__2e(IMetadataWebServiceApplication serviceApplication) 
        at Microsoft.SharePoint.Taxonomy.MetadataWebServiceApplicationProxy.<>c__DisplayClass2c.<RunOnChannel>b__2b() 
        at Microsoft.Office.Server.Security.SecurityContext.RunAsProcess(CodeToRunElevated secureCode) 
        at Microsoft.SharePoint.Taxonomy.MetadataWebServiceApplicationProxy.<>c__DisplayClass2c.<RunOnChannel>b__2a() 
        at Microsoft.Office.Server.Utilities.MonitoredScopeWrapper.RunWithMonitoredScope(Action code) 
        at Microsoft.SharePoint.Taxonomy.MetadataWebServiceApplicationProxy.RunOnChannel(CodeToRun codeToRun, Double operationTimeoutFactor) 
        at Microsoft.SharePoint.Taxonomy.MetadataWebServiceApplicationProxy.ReadApplicationSettings(Guid rawPartitionId) 
        at Microsoft.SharePoint.Taxonomy.MetadataWebServiceApplicationProxy.get_ServiceApplicationSettings() 
        at Microsoft.SharePoint.Taxonomy.MetadataWebServiceApplicationProxy.TimeToCheckForUpdates() 
        at Microsoft.SharePoint.Taxonomy.Internal.TaxonomyCache.CheckForChanges() 
        at Microsoft.SharePoint.Taxonomy.Internal.TaxonomyCache.<LoopForChanges>b__0().

  • Make VM accessible to the outside world (iptables question)

    I have a VM running on one of our internal servers on top of Oracle Enterprise Linux 4.x with VMware Server 3.x
    Inside the VM runs a Oracle Database and a WebLogic Server, and I need to access the Weblogic administrative interface and the applications running on it from another computer part of Oracle Internal Network.
    If I start the VM with its network interface in "bridged" mode, then the VM doesn't get any IP by DHCP. If I try to manually assign an IP to it, the network doesn't work, most probably because of some security rules enforced by the local SA.
    If I start the VM with its network interface in NAT mode, then the internal applications fail to start with network sockets errors.
    The only way to start the VM and the applications running inside it without errors is the "host network only" mode, but then the applications are not available from any other machine than the one on top this VM runs.
    So I guess that the easiest way to solve this problem would be to create some IPTABLES rules so that all http/https/ssl traffic passing through the physical machine network interface on certain ports to be forwarded to the VM host-only network interface.
    I do not have enough knowledge of IPTABLES rules and I know this is quite a huge subject, so starting to learn it now will take some days which I can not afford right now...
    Is someone with more knowledge on the subject able to help me here?
    Thanks and Regards
    Serban

    Can you get in touch with your local SA to see if there are any policy or network security restrictions that apply? DHCP is not a good solution for your situation anyway, and I would not bother to setup firewall with dynamic port forwarding and proxying to bypass networking restrictions. I think, the most, if not the only feasible option, to make your VM talk to the outside world, is to setup your VM in bridged network mode, so that the VM interface can broadcast at the same level as your host interface. Besides, your current external network security may prevent routing any IP address other than the one of your host computer, in which case you will be able to access your VM only from within your host computer, regardless.
    If you cannot work out a static IP address or direct access to your VM from outside, perhaps simple port forwarding may work in your case, which will automatically forward all traffic to a certain port on your host computer to the network of your VM, but then you won't be able to choose.
    Edited by: Dude on Nov 12, 2010 7:14 AM

  • Accessing a coldfusion 8 developer server from the outside?

    I just installed Coldfusion 8 Developer edition with the built in server on a windows 7 computer on my home network because i want to experiment with some things for a client.  I can access the coldfusion pages from localhost but i cannot access them from any other computer.
    I thought that the developer edition coudl be accessed from more than just the computer its running on.
    what am I missing?

    Hi,
    Are you able to browse other web pages ie HTM from other than localhost? I would think if other HTTP was accessible then CFM pages should be also.
    If HTTP pages are generally not accessible other than localhost -  perhaps there is a firewall block or there is not route to publish to the internet or LAN.
    If other HTTP pages are able to be browsed where as CFM not, perhaps CFM is only available via the “built-in webserver” on port 8501 (or similar) and you need to connect CF to IIS with “Web Server Configuration Tool” (WSCONFIG.EXE) tool.
    HTH, Carl.

  • [SOLVED] Can't access my home server from the outside

    Hi all,
    I have installed Arch on a Raspberry Pi and am trying to set up a home server. Right now, I am running a simple HTTP server (using node.js, if that matters) on port 8080. From my LAN, I can access the server all right.
    From the outside, it seems that the traffic does actually reach the computer (I conclude this from the blinking diode indicating network traffic). However, all requests time out. Interestingly, if I kill the server while a request is pending, the timeout occurs right away.
    I have no idea what is causing this. I have checked for iptables rules, but there seem to be none. What is blocking the traffic and how can I find out?
    EDIT: Nevermind, I was testing incorrectly -- the traffic did reach the Raspberry Pi, but the return traffic did not reach my test computer because it was blocked by the router's firewall. Testing from TOR works just fine.
    Last edited by MrAllan (2013-12-24 12:01:42)

    I too am having problems accessing Directory server from Netscape Console installed on Winxp.
    If I try to open Directory server it doesn't give any error. No windows nothing.
    If I try th same from the machine on which it is installed everything is fine. What is strange is that it did open a couple of times. But at the same time I can open the admin server, Netscape Messaging server from the xp box. Searching all over for a solution. Any help/pointers would be greatly appreciated.
    Config details:
    iDS4.13, iMS 5.0, running on Sol 8 box
    Netscape Console 4.2 on WinXP.
    Thanks

  • Disappointed with maps, will google maps be available in the App Store?

    I was really looking forward to the new maps but am very disappointed. Don't get me wrong the 3D maps are great, but so far in the UK I can only find London with this function.
    But this isn't my gripe. It's the view in standard mode, none of the road types have different colours so navigation is much more difficult. On google maps the motorways are blue, major A roads green and so on. All the roads are the same colour on apple maps so motorways look the same as a roads etc. Is this likely to change?
    If not will google maps be available in the App Store any time soon? Or is there a free/cheap map app that is as good as google maps? I can use google maps in safari but its nowhere near as intuitive :-(
    I know the OS is only new, but they've been making a song and dance about this maps and I find it a big disappointing. I don't even like the colour scheme, oceans and rivers etc are shocking blue.

    If you go to google.com and view maps on the full site then there is a pop-up that asks if you would like to add the mobile app version to your home screen. This puts the google maps app on your phone. It is web based and at least on my phone is slow to load up but the resolution is what you were used to before the update.

  • "The item you've requested is currently not available in the Indian Store"?

    I am getting this message at iTunes Store "  "The item you've requested is currently not available in the Indian Store"?   " ,  so unable to connect with iStore .
    Also My iPhone 4s is not getting connected with iTunes .  
    Please help on this..

    Sorry. You're still not making sense.
    I am able sign in there but not able to access iTunes at all.
    Sign in where?
    I need to access Homepage of iTunes . But whenever i click to any of the option at iTunes I get the above message .
    Click what "option"?

Maybe you are looking for

  • Problems even after rolling back to 8.0

    My 2nd generation shuffle was working fine (for the most part). Then I updated to iTunes 8.1 and noticed the exact same problems that everyone else is noticing, namely that syncing was completely broken. (http://discussions.apple.com/thread.jspa?thre

  • Getting Java 1.4.2_10 to work along side of 1.5.0_06 in IE

    I'm trying to use IBM's Tivoli Enterprise Portal through IE but it only will take java 1.4.2_10 which shouldn't be a problem except I have clients that also need version 1.5.0_06. I've tried a lot of different settings in IE and in the two different

  • Sharepoint 2010 SQL Backups to taken

    Hi, What are the DB's needs to backed up on regular basis for share point? One back up that I know is "Sharepoint Content Database". Please Explain! Thanks, Meenakshi

  • Spry Accordion - Troubles

    Hello fellow developers! I am having some problems with my SPRY Accordion. I have ruined the default CSS file for the Spry Accordion (spryAccordion.css) I have changed the settings and now made a mess. The problem seems to be with Mozilla Firefox mos

  • After Effects Preview Resolutions and Pixel Bender

    Hi, Hopefully this is a simple fix. I've encountered an issue with PB filters and After Effects's variable preview resolution. Consider this simple kernel: <languageVersion : 1.0;> kernel gridTest <   namespace : "quarterlightpictures.com";     vendo