Hi,
I'm struggling with a piece of configuration in our data centre. We are trying to deliver email synchronisation to iPhone/iPad clients using the Microsft ActiveSync protocol.
In the data centre we use FWSM firewall running OS 4.1(3) and use CSM 4.0 to manage them.
To do this I have a registered public IP address mapped to a URL which is configured with a static destination NAT (public-to-private). However, because the application architecture design is so challenging () I have user authentication servers in my DC tier 2 application layer and not my tier 1 (public) environment.
So, I do not want to allow a source address of "any" down into T2 and need to apply a source_NAT to the inbound packet from the Internet client.
I believe I need to create a dynamic policy NAT configuration. I have configured this, every which way but loose but the NAT is not happening. The connection still shows as a public IP address when it reaches my T2 firewall logs.
Does anyone have a link to creating an inbound source_NAT configuration?
Cheers
Dave