Contact US

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

Public Server vs. using NAT for STUN / TURN servers

Public Server vs. using NAT for STUN / TURN servers

Public Server vs. using NAT for STUN / TURN servers

I need to setup access to a STUN & TURN server. Due to the number of ports needed and what a stun / turn server does, I’m trying to determine if I should use the Public Server feature in the ASA 5525 ver. 9.1. I have the documentation from cisco of how to setup a public server and one still creates NAT & ACL rules…. So how is that different than just creating the objects for the servers & setting up standard NAT & ACL rules? Looking for references as well that can give different scenarios of when to us a public server.

RE: Public Server vs. using NAT for STUN / TURN servers

I assume you are referring to the 'Public Servers' bit in the ASDM GUI? This is sort of a 'macro' and automates the manual process of creating ACL's and NAT rules so its no different from what you describe. If you do create entries in the public server part of the ASDM GUI rules will still get created in the NAT and Access rules screens.


RE: Public Server vs. using NAT for STUN / TURN servers

My advice---I do everything manually, unless I'm the one that created the macro...since I troubleshoot my own networks, I want to know exactly how everything is configured, from A to Z


ip access-list extended IP-Options-and-Powerball
deny ip any any winning-powerball-ticket
permit ip any any option any-options
class-map ACL-Options-and-Powerball
match access-group name IP-Options-and-Powerball
policy-map CoPP-POLICY
class ACL-Options-and-Powerball
service-policy input CoPP-POLICY

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members! Already a Member? Login

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close