Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2340
Views
0
Helpful
15
Replies

Nat on Router

clark white
Level 2
Level 2

‎08-22-2016 03:02 PM - edited ‎03-08-2019 07:06 AM

Dears,

Please find the attached topology.

  1. I have a strange problem for my isolated LAN PC which is connected on Internet Router which are source Nat by the internet router ( nat overload) when they browse internet.
  2. I have a ASA behind internet router and on ASA I have a static Natted  mail server.
  3. when a user from isolate LAN 172.24.1.1 (PC) access the https://mail.server the page doesn't opens.
  4. I can see the static translation on the Internet router as well on the asa.
  5. I can see the my private lan ip address changes to my own internet router interface address (public) and in asdm I can the see logs "connection build inbound " but the login page on user pc doesn't appear in the browser it keeps on moving.

there is something I m missing in the internet router that I don't know becz I can the asa packet capture the packets are coming back from ASA.

Labels:
Preview file
25 KB
0 Helpful
15 Replies 15

ahmedshoaib
Level 4
Level 4
In response to clark white

‎09-01-2016 08:44 AM

Hi;

As my understanding you can't access the https://mail.server (which is behind firewall - inside zone) from you private network 172.24.1.0 (which connected to Router 3rd interface - Firewall outside zone).

After review the configuration the missing nat statement for 172.24.1.0 network on firewall and also verify firewall policy (outside interface) allowed 172.24.1.0 network to communicate mail server.

Thanks & best regards;

0 Helpful
Customers Also Viewed These Support Documents