Hi I made static NAT entry to transmit HTTPS requests from Internet to our WWW server inside LAN. Configuration of ASA5510 below:
interface Ethernet0/0 nameif outside security-level 0 ip address 1.1.1.30 255.255.255.224 ! interface Ethernet0/1 nameif inside security-level 100 ip address 192.168.24.1 255.255.255.0 ! nat-control global (outside) 1 interface nat (inside) 1 0.0.0.0 0.0.0.0 ! access-list OUT extended permit tcp any host 1.1.1.30 eq https static (inside,outside) tcp 1.1.1.30 https 192.168.24.10 https netmask
255.255.255.255 access-group OUT in interface outsideQuestion: Will users from LAN have access to https://1.1.1.30 ? If not is any way/configuration to resolv this issue ?
Thanks, Robert