I have an ASA 5520 on FW 9.0(4).
I have on it 3 subnets :
Clients on the inside are able to access internet without any issue
Webserver located on the DMZ is accessed without any issue if request come from the outside using its public ip.
But we can't access Webserver from the inside using its public IP. (I don't want to do nat 0)
On FW previous 8.4 this command would have solved my problem :
static (DMZ,inside) 18.104.22.168 22.214.171.124
I did not found how to reproduce the same behaviour on post 8.4 FW
Many thanks by advance for any help.
Go to Solution.
The requirement can be achieved using the following configuration.WebServer Private IP: 126.96.36.199 | WebServer Public IP: 188.8.131.52
!object network obj-184.108.40.206host 220.127.116.11object network obj-18.104.22.168host 22.214.171.124!nat (inside,DMZ) source dynamic any interface destination static obj-126.96.36.199 obj-188.8.131.52!
View solution in original post
Thanks it worked as a charm. Why did they make such a simple thing, something barely understandable.?!
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: