cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
819
Views
0
Helpful
3
Replies

communications between two public IPs on ASA

Paul Jin
Level 1
Level 1

Hello, 

here is what I want to do. 

We have ASA 5520. and NATed two internal IPs to  two public IPs through the outside interface. 

i.e: 192.168.1.10 -> 101.100.100.10, 192.168.1.20 -> 101.100.101.20

right now the two public addresses cannot talk to each other. I already enabled "traffic between two or more hosts connected to the same interface".

Is there anyway make it happen? 

 

Thank you

3 Replies 3

These two servers have real IPs in the same network (assuming a /24 mask here), which means they can communicate without going through the ASA. Just make sure they use the real IP of the peer. If you want to use the FQDN of the other server in the communication, is looks like you just need the keyword "dns" at the end of your static nat statements.

Hi Paulkim,

 

1.Create a outside Access policy with source 101.100.100.10 destination 101.100.100.20 with service (according to your requirement)  Permit.

 

2.Create a outside Access policy with source 101.100.100.20 destination 101.100.100.10 with service (according to your requirement)  Permit.

game123
Level 1
Level 1

can you kindly share the topology diagram , (mspaint diagram is fine also).

 

and then we can provide some insight and inputs to try out. ...awaiting.

 

Review Cisco Networking for a $25 gift card