I have a PIX 515 with two interfaces, inside (10.0.0.1) and outside (220.127.116.11).
The web server ip is 10.0.0.237. I have a static translation to 18.104.22.168.
My access list is wide open...
permit tcp any any
permit udp any any
permit icmp any any
I can access the web server console, ssh, ftp, from the outside but I can't reach the app hosted on the webserver.
Is it safe to assume that if I can reach the web server console, that I should be able to reach the app too? It's the same IP and port.
Do I need a global pool and NAT if I have statics?
The app works fine when accessed from the 10.0.0.0 subnet. I'm wondering if the developers are using hard coded ip's in the code.