08-28-2018 11:07 AM
Hi All,
Here is my situation, I am creating a DMZ zone for our public facing applications and servers, in doing so the DMZ is setup on a different subnet and vlan. Because we have so many applications, services etc on a separate subnet/vlan, is there a way to proxy the connections to and from the servers and dmz without making a physical IP change on the servers to have them in the same subnet/vlan as the DMZ?? Here is my current config below:
DMZ: 10.1.99.1
ME Server: 10.1.1.149
object network obj-10.1.1.149
nat (DMZ,outside) static 204.2.222.56
object network obj-10.1.1.149
host 10.1.1.149
object network me-server-fromOutside
host 10.1.1.149
nat (DMZ,outside) static interface service tcp https https
object network me-server-fromInside
host 10.1.1.149
nat (DMZ,inside) static interface service tcp https https
access-list OutsidetoDMZ permit tcp any4 host 10.1.1.149 eq https
access-group OutsidetoDMZ in interface outside
Any insight into how to make this happen is appreciated.
Tks in advance!
Solved! Go to Solution.
08-29-2018 09:53 AM
08-29-2018 09:53 AM
09-18-2018 09:33 PM
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: