Hi All,
I am preparing for my CCNA security Exam. I have difficulty with inbound NAT setup. Setup is
Internet -- > ASA -- > LAN (Inside) -- > Cisco Router (3600)
I want to forward SSH (customer port 8222) back to cisco router. NAT, ACL on ASA is setup correctly as this works in when I have DHCP server running
asa inside interface. That is when router picks IP address from ASA ( as it wil have ASA as default gateway) upto this points every thing works Great
Issue is I am moved DHCP server from ASA to Router with ASA as setup to default gateway. I have few other servers on LAN , which picks IP address
default gateway , port forwarding works for them.
But as my router interface f0/0 (which connects back to ASA) I have static Ip address. That where it doesn't respond to port forwarding request from
outside. My understanding is that as there is not default gateway that's why it's failing.
I have tried to on interface f0/0 to get IP address from local pool but that didn't worked.
interface f0/0
ip address pool mypool
as well as
ip add dhcp
but for some reason this interface doesn't my ip address from my pool. I know pool is working fine as other devices get IP address fine from poo.
Any Help on this would by appreciated.