ASA DNS Doctoring

Hi All

Im having trouble getting DNS Doctoring to work on my ASA 5520. We have the usual setup detailed below

Server on DMZ -
Public IP address for NATing -
Inside network -

Here is the relevant config;

static (DMZ,OUTSIDE) dns
static (INSIDE,DMZ) netmask

access-l OUTSIDE_IN per tcp any host eq www

Modular policy is in the default state and layer 7 inspection of DNS is in place

The users will be using external DNS to get to the web sites via the external IP address (

Any ideas please? We also have a few web developers that need access to the web server via it's private address (

Who is Participating?
Leedham2answersConnect With a Mentor Author Commented:

This link is awesome
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.