Hi,
Does anyone know why PIX version 6 automatically converts access-lists to work with outside (NAT) addresses? But this does not happen in version 8?
For example - I have a NAT configured:
static (inside,outside) 10.10.10.1 SERVER1 netmask 255.255.255.255
Via the PDM I create an access-list to allow inbound (outside ->
inside) to SERVER1.
The "inside" name SERVER1 is entered into PDM but the actual access- list in the configuration file uses the "outside" NAT address:
access-list outside_access_in extended permit any host 10.10.10.1 eq http
The PDM automatically convert the access-list. This does not happen in version 8. If you enter an inside name via the GUI (ASDM in version
7+) you will get an inside name in your access-list? Even is a NAT rule is in place.Has anyone else seen this?
Thanks,
Paul