I have Cisco ASDM 6.2 for ASA and am trying to allow external secure imap access. I have a PAT set up for:
original interface=outside, source=external.mail.ip.address
translated interface=inside, ip address=exchangeserver
PAT original=993 and translated=993 (having these the same doesn't really make sense to me)
When I do a packet trace with the following info, the packet is dropped on the ACL:
interface=outside, type=TCP, source ip=external.mail.ip.address, source port=993, destination ip=internal.exchange.ip, destination port=993
The ACL it fails on is the last outside rule (any any ip deny).
Admittedly I don't know much about this and an external company originally set all this up. There could be all sorts of things wrong with this - but I do know I can't get IMAP from outside, only from the inside.