I'm trying to set up a new pix using the outside interface and translating specific ports to a NAT host on the inside.
Everything looks ok, but I don't see the ACL rules being hit in the ASDM / access rules. I do get an error: " TCP access denied by AC from (myexternal)/54936 to outside:corepix/23"
name 10.10.10.1 InsideCorePix
name 10.10.10.2 APDDevice
access-list outside_access_in extended permit ip host ME host corepix log warnings
access-list outside_access_in extended permit tcp any any eq telnet
Acl standard permit 10.10.10.0 255.255.255.0
access-list inside_access_in extended permit ip 10.10.10.0 255.255.255.0 any log warnings
access-list inside_access_in extended permit ip host APDDevice any
global (outside) 101 interface
nat (inside) 101 0.0.0.0 0.0.0.0
static (outside,inside) APDDevice noncorepix netmask 255.255.255.255
access-group outside_access_in in interface outside
Is there something special I need to do to allow the outside interface to forward a port to a host on the inside?