Pix 525, OS 7.2(3)
I am trying to do the following:
Inside FTP-server 10.1.1.1
Outside NAT-address: 220.127.116.11
Remote Network: 172.16.1.0/24
VPN connection from remote network to outside NAT-adress that should be redirected to inside FTP-server.
I am trying to use the static command like this:
access-list Crypto_map extended permit ip host 18.104.22.168 172.16.1.0 255.255.255.0
access-list FTP_OVER_VPN extended permit IP host 10.1.1.1 172.16.1.0 255.255.255.0
static (inside,outside) 22.214.171.124 access-list FTP_OVER_VPN
The translation just don't work. Are there any better way to do this? I need to use Policy-NAt since i do not want the FTP-server to use the translated address any other time than over the VPN-tunnel.