Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?

Send Inside Traffic Out Particular Outside IP Address on Cisco ASA

Posted on 2018-01-12
2
Medium Priority
?
30 Views
Last Modified: 2018-01-16
I have a mail server on the inside of my network, I have established all of the ACL's and NAT Statements on the ASA and traffic is flowing correctly inbound. However when the mail server sends traffic outbound ( to external networks) it uses the ASA Primary IP on the outside interface. I would like to force the outbound traffic to external networks to use a particular IP Address (the one that is NAT'ed) for SMTP. As the NAT Statements are already in place and functioning is this a matter of using an extended ACL? If so how should it be constructed? Thank you in advance for the assistance.
0
Comment
Question by:bhagsupport
2 Comments
 
LVL 7

Expert Comment

by:Yves Accad
You will need something like this:
object network yourmailserver-object
   nat (Inside, Outside) static publicipaddress

That's assuming you're have:
 object network yourmailserver-object
     host privateipaddress
0
 
LVL 58

Expert Comment

by:Pete Long
You need a static IP (or wha tI call a one-to-one NAT)

Dont forget you will also need to change your public DNS records so that the new IP is used !!

Setting up the Correct DNS Records for your Web or Mail Server

Right to actually setup the NAT see the following article;

Add a Static (One to One) NAT Translation to a Cisco ASA 5500 Firewall

Pete
0

Featured Post

Get your Disaster Recovery as a Service basics

Disaster Recovery as a Service is one go-to solution that revolutionizes DR planning. Implementing DRaaS could be an efficient process, easily accessible to non-DR experts. Learn about monitoring, testing, executing failovers and failbacks to ensure a "healthy" DR environment.

Join & Write a Comment

This program is used to assist in finding and resolving common problems with wireless connections.
In this article, the configuration steps in Zabbix to monitor devices via SNMP will be discussed with some real examples on Cisco Router/Switch, Catalyst Switch, NAS Synology device.
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…

579 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question