Hi all. I have small problem I need help to figure out
I have a Global statement:
global (outside) 2 220.127.116.11 netmask 255.255.255.240
And my nat statement is:
nat (dmz2) 2 0.0.0.0 0.0.0.0 0 0
Now, I have a host inside DMZ2 that wants to talk to my PIX's outside interface which is: 18.104.22.168
So the traffic goes from insidehost -> gets PAT/NAT with 22.214.171.124 (global interface) and then trying to contact the real outside interface 126.96.36.199. But it dont work
In my DMZ2 ACL i have the rule "permit ip any any" just to be on the safe side.
My insidehost can contact other sites outside my PIX. (I Have 2 other pix with other ip-ranges that the inside host can contact without problems.)
So, is it possible for the global interface to contact the outside interface or is that denied somehow intentionaly`?
Or do i need to add a rule in the outside ACL that permits the outside interface to communicate with the global interface?