Solved

rule for source ip address

Posted on 2010-11-29
5
380 Views
Last Modified: 2012-05-10
Hi, on Cisco ASA-5505 I have more addresses public and I have a mail server to which is associated with a public IP different from that used by public interface on ASA, for example:

public IP on ASA: IP 88.x.y.1
pubbbli IP on mail server: 88.x.y.2
private IP mail server: 192.168.1.2

I would that when go to web (on the mail server pc) the ip public address is:
88.x.y.2
and not: 88.x.y.1

with the current current configuration if for example on the mail server go on myip.com I see: 88.x.y.1

Which rule I must add to the current configuration?
Thanks.

-
 Salvatore.
nat-config.JPG
0
Comment
Question by:sasapix
  • 3
  • 2
5 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
Comment Utility
Remove all of the individual statics for mailserver and enter a single ip static nat:

static (inside,outside) <public IP2> mailserver netmask 255.255.255.255

Now all traffic, both inbound and outbound to/from this server will always use the public IP2 address.
0
 

Author Comment

by:sasapix
Comment Utility
after remove all individual statics I must add a new rule as well as in the attached file ?
(where "use ip address" si public_ip2).

Thanks.

-
 Salvatore.
add-rule.JPG
0
 
LVL 79

Expert Comment

by:lrmoore
Comment Utility
You should not have to change the access rules if you are using the same public IP2 as you are using now
0
 

Author Comment

by:sasapix
Comment Utility
sorry but in 'add-rule.jpg' I insert a static nat rule not a new access rule, perhaps I did not understand what that you have suggested to me ?

-
 Salvatore.
0
 
LVL 79

Expert Comment

by:lrmoore
Comment Utility
Sorry. Yes, add a new nat rule
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Optimal Xbox 360 connectivity requires "OPEN NAT". If you use Juniper Netscreen or SSG firewall products in a home setting, the following steps will allow you get rid of the dreaded warning screen below and achieve the best online gaming environment…
Imagine you have a shopping list of items you need to get at the grocery store. You have two options: A. Take one trip to the grocery store and get everything you need for the week, or B. Take multiple trips, buying an item at a time, to achieve t…
In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now