https://community.cisco.com/t5/network-security/acl-for-https-internal-network/m-p/822336#M955253 <P>We have an internal https server that we cannot access. The statement on the router is (permit ip 172.31.2.2 0.0.0.255 any) can anyone help please?</P><P></P><P>thanks</P> Mon, 11 Mar 2019 12:01:23 GMT Eduardo AYALA 2019-03-11T12:01:23Z https://community.cisco.com/t5/network-security/acl-for-https-internal-network/m-p/822336#M955253 <P>We have an internal https server that we cannot access. The statement on the router is (permit ip 172.31.2.2 0.0.0.255 any) can anyone help please?</P><P></P><P>thanks</P> Mon, 11 Mar 2019 12:01:23 GMT https://community.cisco.com/t5/network-security/acl-for-https-internal-network/m-p/822336#M955253 Eduardo AYALA 2019-03-11T12:01:23Z https://community.cisco.com/t5/network-security/acl-for-https-internal-network/m-p/822337#M955254 <HTML><HEAD></HEAD><BODY><P>Eduardo, </P><P></P><P>you can do it this way.</P><P></P><P>e.g</P><P>Inside LAN server IP 10.2.2.100</P><P>static NAT Address for above server 172.31.2.2</P><P></P><P></P><P>router NAT inside-outside interface config</P><P>interface fe01</P><P>ip address 172.31.2.1 255.255.255.0</P><P>ip access-group 101 in</P><P>ip nat outside</P><P></P><P></P><P>interface fe02</P><P>ip address 10.2.2.1 255.255.255.0</P><P>ip nat inside </P><P></P><P>ip nat inside source static 10.2.2.100 172.31.2.2 </P><P></P><P>access-list 101 permit tcp any host 172.31.2.1 eq 443</P><P></P><P></P><P>Rgds</P><P>Jorge</P><P></P></BODY></HTML> Mon, 11 Feb 2008 17:03:06 GMT https://community.cisco.com/t5/network-security/acl-for-https-internal-network/m-p/822337#M955254 JORGE RODRIGUEZ 2008-02-11T17:03:06Z