I just finished one project where I moved the exchange server to the new remote site thanks to you (port forwarding). Now, there is another exchange server that I need to move (Static NAT 1 to 1) Just learned about it. Our network engineer left and I have to finish several projects that he was working on and then look to hire someone. I am not network guy, so please include as much details as possible.
Former network engineer did leave a text file for this change...I just would like to make sure what needs to be configured in which order...or if the order in this text file is good...and also in which configuration mode the commands should be typed...For example, in config t, under the object group...etc...(in order)...
Trying to move 2nd exchange server to our other site. New IPs. Static NAT 1 to 1. Several IPs from the outside that need access. Several ports to be opened and ACLs to be assigned. Please see below the configuration that needs to be implemented.
object network objInternal-192.168.1.9
object network objExternal-62.x.x.1
nat (inside,outside) source static objInternal-192.168.1.9 objExternal-62.x.x.1
object-group service IN_TRAFFIC tcp
port-object eq https
port-object eq smtp
object-group network Cloud_IPS
network-object host 22.x.x.x
network-object host 23.x.x.x
object-group network Cloud_IPS_2
network-object host 24.x.x.x
network-object host 25.x.x.x
object-group network Nodes_Ex (same IP as above for objExternal)
network-object host 62.x.x.1
object-group network Nodes_In (same IP as above for objInternal)
network-object host 192.168.1.9
access-list access_interface_out extended permit tcp object-group Cloud_IPS
object-group Nodes_In eq smtp
access-list access_interface_out extended permit tcp object-group Cloud_IPS_2
object-group Nodes_In object-group IN_TRAFFIC
access-list access_interface_out extended permit tcp any4 object-group Nodes_In eq https
Also, do i need any additional command to apply these ACLs to the outside interface?