Re:ASA Multiple Services behind same IP address

Danny Cooke · ‎06-19-2013

Hi All

I've been banging my head for a day on this one - maybe its really simple but I've looked at it too much!!! I'm running a pair of ASA 5525-X on v9.1(1) of the ASA S/W and 7.1 of ASDM

This is the scenario that I need

SERVERA has 3 IP addresses (bound to the same NIC) and I have 2 public IP addresses in use on our old infrastructure for the three services. It breaks down like this

SMTP - LAN IP 172.16.5.22, WAN IP 100.100.100.1 (not real address!)

SSL Web Server (443) - 172.16.5.125, WAN IP 100.100.100.1

SSL Web Server (443) - 172.16.5.222, WAN IP 100.100.100.2

Whatever I have tried, I cant get the SMTP service to coexist with an SSL Web Service. Is this a limitation of the box or a limitation of my ability?

Thanks

andyjames · ‎06-19-2013

Hi,

Are you doing NAT or PAT for the SMTP server?

Danny Cooke · ‎06-19-2013

Hi Andy

Thanks for the quick reply, the SMTP is set up as NAT
Thanks

Sent from Cisco Technical Support Android App

andyjames · ‎06-19-2013

Hi Danny,

Is the SMTP NAT on the Outside interface IP address? If so the SSL port will also be translated through to the server.

If it is that way it's best to change the SMTP to PAT and that will allow the SSL service to run also.

Danny Cooke · ‎06-19-2013

Ok cool, I'm out of the office now so I'll get it configured tomorrow

Thanks

Sent from Cisco Technical Support Android App