Solved

rule for source ip address

Posted on 2010-11-29
5
384 Views
Last Modified: 2012-05-10
Hi, on Cisco ASA-5505 I have more addresses public and I have a mail server to which is associated with a public IP different from that used by public interface on ASA, for example:

public IP on ASA: IP 88.x.y.1
pubbbli IP on mail server: 88.x.y.2
private IP mail server: 192.168.1.2

I would that when go to web (on the mail server pc) the ip public address is:
88.x.y.2
and not: 88.x.y.1

with the current current configuration if for example on the mail server go on myip.com I see: 88.x.y.1

Which rule I must add to the current configuration?
Thanks.

-
 Salvatore.
nat-config.JPG
0
Comment
Question by:sasapix
  • 3
  • 2
5 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 34229704
Remove all of the individual statics for mailserver and enter a single ip static nat:

static (inside,outside) <public IP2> mailserver netmask 255.255.255.255

Now all traffic, both inbound and outbound to/from this server will always use the public IP2 address.
0
 

Author Comment

by:sasapix
ID: 34229828
after remove all individual statics I must add a new rule as well as in the attached file ?
(where "use ip address" si public_ip2).

Thanks.

-
 Salvatore.
add-rule.JPG
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 34229981
You should not have to change the access rules if you are using the same public IP2 as you are using now
0
 

Author Comment

by:sasapix
ID: 34230122
sorry but in 'add-rule.jpg' I insert a static nat rule not a new access rule, perhaps I did not understand what that you have suggested to me ?

-
 Salvatore.
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 34230194
Sorry. Yes, add a new nat rule
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Overview The Cisco PIX 501, PIX 506e, ASA 5505 and ASA 5510 (most if not all of this information will be relevant to the PIX 515e but I do not have a working configuration handy to verify the validity) are primarily used within small to medium busi…
I recently updated from an old PIX platform to the new ASA platform.  While upgrading, I was tremendously confused about how the VPN and AnyConnect licensing works.  It turns out that the ASA has 3 different VPN licensing schemes. "site-to-site" …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

679 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question