Hello,
Does anyone know which commands allow insider (NATed host to access Public IPs on frewall public IP block?
let me say, I have class C 209.36.9.X network for ASA 5520 public IPs
I have static one to one NAT for insider host (10.10.10.X)
I would like insider host, say 10.10.10.15 (Nated Public IP
209.36.9.15) to access http://209.36.9.20 (10.10.10.20).thanks,
Cisco ASA 5520 IOS 7.22
I think it should work .. Thr are 2 ways for this
1 Way: To apply access-list for access from outside to inside interface for 209.36.9.202 Way: Destination Static route for 209.36.9.20
If you want to allow HTTP access to the PIX firewall, you just enable a IP address or range. For example, "http 10.10.10.15 255.255.255.255 inside" or "ip http 10.10.10.0 255.255.255.0 inside".
Good luck,
Mike CCNP, CCDP, CCSP, Cisco Voice, MCSE W2K, MCSE+I, Security+, etc. CCIE R&S (in progress), CCIE Voice (in progress)
------ Headset Adapters for Cisco IP Phones
You can't do this on the ASA or Pix. Neither will route traffic out of the same interface that it came into so you can't 'route on a stick' as it were. If you need to access an internal server from the internal network then you need to use the internal IP address.
Chris.
That would only allow access from outside to inside, not inside to inside.
Chris.
Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.