Im having a weird issue; I can ping my exchange, connect to it remotely (rdp) through the internet eventhough I am specifying the ports in my static pat. If I add the overload command to my Exchange pool then its blocking all the unspecified ports in my static pat. Am I missing something in the following config?
Exchange public ip: 1.1.1.1 - Internal: 192.168.10.10
Users Public IP: 2.2.2.2 - Internal (192.168.1.0)
ip nat pool Exchange 1.1.1.1 1.1.1.1 prefix-length 30
ip nat pool Client_Access 2.2.2.2 2.2.2.2 prefix-length 30
ip nat inside source list 120 pool Client_Access overload
ip nat inside source list 121 pool Exchange
ip nat inside source static tcp 192.168.10.10 25 1.1.1.1 25 extendable
ip nat inside source static tcp 192.168.10.10 80 1.1.1.1 80 extendable
ip nat inside source static tcp 192.168.10.10 110 1.1.1.1 110 extendable
ip nat inside source static tcp 192.168.10.10 443 1.1.1.1 443 extendable
ip nat inside source static tcp 192.168.10.10 587 1.1.1.1 587 extendable
!
access-list 23 permit 10.10.10.0 0.0.0.7
access-list 120 permit ip 192.168.1.0 0.0.0.255 any
access-list 120 permit ip host 192.168.2.5 any
access-list 120 permit ip host 192.168.2.6 any
access-list 120 permit ip host 192.168.10.3 any
access-list 121 permit ip host 192.168.10.10 any