Solved

rule for source ip address

Posted on 2010-11-29
5
383 Views
Last Modified: 2012-05-10
Hi, on Cisco ASA-5505 I have more addresses public and I have a mail server to which is associated with a public IP different from that used by public interface on ASA, for example:

public IP on ASA: IP 88.x.y.1
pubbbli IP on mail server: 88.x.y.2
private IP mail server: 192.168.1.2

I would that when go to web (on the mail server pc) the ip public address is:
88.x.y.2
and not: 88.x.y.1

with the current current configuration if for example on the mail server go on myip.com I see: 88.x.y.1

Which rule I must add to the current configuration?
Thanks.

-
 Salvatore.
nat-config.JPG
0
Comment
Question by:sasapix
  • 3
  • 2
5 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 34229704
Remove all of the individual statics for mailserver and enter a single ip static nat:

static (inside,outside) <public IP2> mailserver netmask 255.255.255.255

Now all traffic, both inbound and outbound to/from this server will always use the public IP2 address.
0
 

Author Comment

by:sasapix
ID: 34229828
after remove all individual statics I must add a new rule as well as in the attached file ?
(where "use ip address" si public_ip2).

Thanks.

-
 Salvatore.
add-rule.JPG
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 34229981
You should not have to change the access rules if you are using the same public IP2 as you are using now
0
 

Author Comment

by:sasapix
ID: 34230122
sorry but in 'add-rule.jpg' I insert a static nat rule not a new access rule, perhaps I did not understand what that you have suggested to me ?

-
 Salvatore.
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 34230194
Sorry. Yes, add a new nat rule
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
Overview The Cisco PIX 501, PIX 506e, ASA 5505 and ASA 5510 (most if not all of this information will be relevant to the PIX 515e but I do not have a working configuration handy to verify the validity) are primarily used within small to medium busi…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question