I have very basic doubt about firewall static rule configuration.
When we configure a static rule to allow connections originated from out side world to inside world on that particulart port and on that particular IP address.
For example : Public ip Address :A.B.C.D and port : 80.
Internal server : 10.1.1.1 which responds to user request.
Outside = A.B.C.D on Port 80.
Redirected to 10.1.1.1 on inside zone with port 80.
Access list on outside permits user request from anywhere on A.B.C.D with port 80.
Now when 10.1.1.1 returns the user request how does inside interface behaves?
We have NOT configured NAT-global configuration to access internet from inside, as users are not allowed to browse internet. Only users from outside shoud be able to visit the web server.
Will the corresponding permit access list gets applied to inside interface.
That means if user initiates a internet connection from 10.1.1.1 ( that is from inside host ) will he be able to browse internet. Although there no configuration by ( NAT-global ).
Please share experience.
Thanks in adavnce.