troubleshooting Question

Cisco ASA 8.3 Configuration

Avatar of masdf123
masdf123 asked on
CiscoHardware FirewallsRouters
8 Comments3 Solutions932 ViewsLast Modified:
Hi,

I am using ASA 5505 8.3

Setup is as follows:

2 Vlans. inside and Outside.

Outside
1.1.1.38 255.255.255.248
route outside 0.0.0.0 0.0.0.0 1.1.1.37 1

Inside:
10.1.1.1 255.255.255.0

object network obj_any
 nat (inside,outside) dynamic interface

object network obj_any
 subnet 0.0.0.0 0.0.0.0

object network PC
 host 10.1.1.39

object network PC
 nat (inside,outside) static 1.1.1.39

10.1.1.39 can access the internet using => 1.1.1.39 fine.
All others can access the internet using 1.1.1.38 fine.

So when I add a ACL example:
access-list outside_in extended permit tcp any 10.1.1.39 eq smtp
access-group outside_in in interface outside

Outside smtp traffic is getting in fine (to PC 10.1.1.39). So far everything is functional.

Now, I have a PC2 (10.1.1.50) trying to access 10.1.1.39 using its public IP (1.1.1.39) which doesn't work.

It only works using the private IP: 10.1.1.39 and not the 1-to-1 public IP 1.1.1.39

Can you please assist and getting this to work using public and private IP both. Or this is not possible?

Thanks
ASKER CERTIFIED SOLUTION
Pete Long
Solutions Architect
Join our community to see this answer!
Unlock 3 Answers and 8 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 3 Answers and 8 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros