Currently, I have not specified it, but ping and ftp are functional between the inside network and the 10.0.0.0/24 network, it is https which is not. But as the diagram shows, there is a router in the architecture that is not managed by us. This week, a technician from this company is coming, I will ask him to check.

Hello,

honestly, I have a doubt about the nat. The nat was configured with asdm

My question is that there are 2 networks directly connected to the ASA and a third which is not.

10.40.1.0 ( INSIDE) ==>ASA==>10.0.1.0 (OUTSIDE)==>Router / firewall (not managed by me) with INSIDe interface 10.0.1.253, outside interface 10.0.0.201==>PC2 (10.0.0.50/24 GW:10.0.0.201).

My diagram:

There is only one active nat rule:

Auto NAT Policies (Section 2)
1 (any) to (outside) source dynamic obj_any interface
translate_hits = 3791, untranslate_hits = 10180
Source - Origin: 0.0.0.0/0, Translated: 10.0.1.254/24

ANd yes from a PC in inside network (10.40.1.4), I can PINg 10.0.0.50 and i can acess to his FTP, but not in https

From a pc from the same network (PC TEMPO1 for exemple in my diagram), i can access web server to 10.0.0.50

We will have a meeting with the router and analyzer installers to review the installation. From my point of view, the simplest solution would be to remove our firewall and their router, and have their PC and analyzer in our network. The problem is that we don't want external PCs on our network. We offered to provide them with PCs, but it seems that their hardware is analyzers with embedded Widnows.
So, we would return to the first diagram.

But my inside LAN PCs still need their gateway in 10.40.1.254.
If I replace the L2 switch in the first diagram (the one to which the ISP router is connected) with an L3 switch?

Currently, this L2 switch has:
ip default-gateway 10.40.1.254

On an L3 switch, would something like this work?

ip route 0.0.0.0 0.0.0.0 10.40.1.254
ip route 10.0.0.0 255.255.255.0 10.40.1.249

Concerning the ISP router, I don't have control over it