11-15-2012 12:32 PM - edited 03-11-2019 05:24 PM
Hello guys,
I have a problem, I´m trying to configure an ASA as shown in the attached scenario.
I need that all inside users to go to the proxy server on DMZ and from there they will go out to the internet.
Right now i have:
INSIDE INTERFACE
Access-list inside permit ip 10.1.1.0 255.255.255.0 host 11.1.1.6
DMZ INTERFACE
Access-list dmz permit ip host 11.1.1.6 any
OUTSIDE INTERFACE
Access-list outside permit ip any host <proxy server public ip>
REGARDING NAT I HAVE THE FOLLOWING:
Static (dmz,outside) <proxy server public> 11.1.1.6 netmask 255.255.255.255
My question would be if it would work with this configuration? Do i need to apply Nat on my inside hosts? Would all my inside hosts when reached the ASA will be send to the proxy and then through the proxy it will send them back to the ASA and then to the internet??
Thanks,
Tony
Solved! Go to Solution.