Category Archives: Cisco ASA

Cisco ASA Port Forward

object network Internal_Server
host 10.200.1.100
object-group service PortForwarding tcp
port-object eq 3389
object service rdp
service tcp destination eq 3389
nat (outside,inside) source static any any destination static interface Internal_Server service rdp rdp
access-list outside_access_in extended permit tcp any object Internal_Server object-group PortForwarding
access-group outside_access_in in interface outside

Cisco ASA bad image

If a ASA starts up and have a bad image you have to insert a new one.

To do this you have to start the ASA up in COMMON mode and set it up for TFTP: (you can use this TFTP : http://tftpd32.jounin.net/)

Type thise information (change to your own)

ADDRESS=10.0.0.245
GATEWAY=10.0.0.2
IMAGE=asa912-k8.bin
LINKTIMEOUT=20
PKTTIMEOUT=4
PORT=Ethernet0/0
RETRY=20
SERVER=10.0.0.234
VLAN=untagged

Then type : tftp

Then the ASA downloads the image and boots up on that image in the RAM

Then you have to set up the ASA with your network (a network where you have the ASA image) and type : copy tftp disk0:

After the copy you have to delete the old image and set the new as boot:

boot system disk0:/asa912-k8.bin
asdm image disk0:/asdm-713.bin
reload save-config noconfirm