Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
319
Views
0
Helpful
0
Replies

Rule from FQDN to Private IPs

MarcoJimenez37276
Level 1
Level 1

‎11-16-2022 11:15 AM

Hello All,

I'm trying to configure a rule on ASA from a list of URLs to private IPs, the config I have is below: 

dns domain-lookup outside
dns server-group DefaultDNS
 name-server 8.8.8.8

object network private_ips
 range 10.0.0.0 10.0.0.20

object network fqdn_url.com
 fqdn url.com

object network fqdn_url2.com
 fqdn url2.com

object-group network urls.com
 network-object object fqdn_url.com
 network-object object fqdn_url2.com
 nat (outside,inside) after-auto source dynamic any interface

access-list IN_OUTSIDE line 1 extended permit tcp object-group urls.com object private_ips eq https

There're no static translations for any of the IPs in the range. 

It is not working, any suggestions? Should the NAT statement be enough to permit the traffic this way? 

Thanks in advance.

0 Helpful
0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card