06-07-2012 08:15 AM - edited 03-11-2019 04:16 PM
I had the ip address conflict problem on the dmz network, i removed proxyarp on the dmz interface on the firewall it sorted it. Another issue i am experiencing right now is that my natted DMZ servers are unable to reach the internet. what could be responsible?
06-07-2012 09:17 AM
Can you post your config?
06-07-2012 09:24 AM
asa
06-07-2012 09:43 AM
Are these the only servers in the DMZ:
SMTPserver
IAG
10.13.199.24
BNG_UAG_INT
If there are more, then you will need a nat (dmz) 1 statement for them as well.
06-07-2012 09:49 AM
These are the servers we have for now and creating more on the Hyper-v. i will try that as well.
06-07-2012 09:44 AM
try adding the following two lines to the end of your DMZ ACL
access-list dmz-in extended deny ip 10.0.0.0 255.0.0.0 10.0.0.0 255.0.0.0
access-list dmz-in extended permit ip any any
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: