I am thinking to configure a Policy Nat associated to a Static Identity Nat in order to exclude my internal networks from nat.
access-list POI_NET1_POLICY_NAT extended permit tcp 192.168.0.0 255.255.252.0 object-group mail2 eq www
static (inside,dmz) 192.168.0.0 access-list POI_NET1_POLICY_NAT
My question is:
The ACL used by the Static Identity Nat must be applied to the inside interface (access-group POI_NET1_POLICY_NAT interface inside in )?
Thanks and Regards,