I have a question regarding Content switch 11506 configuration. I am doing implementation in ISP environment. the senario/diagram is attached with it.
I briefly describe the scenario to you.
They have core router/switch 6509. On 6509 there is VLAN on which content switch 11506 is connecting. Behind the content switch we have two bluecoat proxy working as proxy server and more HTTP server.
I have allowed access from outside interface (CSS VLAN circuit ID 20) to all servers place behind the CSS. Users from out side are able to ping bluecoat server and able to access http sites on server placed in the same VLAN circuit ID 1.
But the issue is, when anybody (bluecoat proxy servers or HTTP server) from inside VLAN Circuit ID 1 tries to access any thing placed on outside of CSS or try to access internet then traffic does not pass across the CSS and CSS does not allow traffic to go across.
I also have configured the ACL on both the inside & outside circuits to allow every thing from any source to any destination. But still unable to access anything place outside CSS.
clause 15 permit any any destination any
But still not working. Somebody told me about about Source group to NAT source IP. What is this?? Please this is live environment. I need the urgent help from any one of you. I have to resolve this issue as soon as possible. I will really appreciate the help.