i am trying to prepare for exam and i'm bit stuck with this scenario in my lab. Could someone help me with this? I'm trying to nat one outside global ip address and tcp port to two different inside server based on source ip address.
I have two user pools 10.18.1.0/24 and 10.18.2.0/24 and all users are set to use proxy server 172.16.1.1:8080. That proxy sever was nated on FWSM to 192.168.1.1, but now i want to split the load and want to nat one user subnet (10.18.1.0/24) to 192.168.1.1 and second user subnet to 192.168.1.2.
What i did is i've configured two access-list's
access-list permit tcp host 192.168.1.1 eq 8080 10.18.1.0 255.255.255.0 eq 8080
access-list permit tcp host 192.168.1.2 eq 8080 10.18.2.0 255.255.255.0 eq 8080
i can apply one static:
static (inside,outside) tcp 172.16.1.1 8080 access-list ACL1
fwsm accepts this command but when i try to apply second static:
static (inside,outside) tcp 172.16.1.1 8080 access-list ALC2
i'm getting error that global already used.
What am i doing wrong here?