Hi,
I have a router which is hooked to an ASA. I have an Internet T1.
Internet ----> Router ----> ASA ----> LAN (includes single server with Exchange) | |___ DMZ
I have a NAT question. How do I pass traffic to my ASA from the router? What I want is for all traffic inbound to go through some ACL's on the router then get handed to the ASA for further inspection and decision making and NAT. But because I am doing NAT at the ASA (because that is where VPNs will terminate), how do I get the router to forward the packets the right way? (outbound out to the T1 and inbound to the ASA). The address that the NAT will be change to will be the public IP address, which will be the address of the outside interface on the router. Is there a way to tell the router to send anything with the address of the outside interface to the ASA?
I am slightly confused....