I have a scenario that requires two internal servers to be able to reach each other on the global IPs. Let's say they have internal IP 10.0.0.x and 10.0.0.y and they are mapped to 1.1.1.x and 1.1.1.y. As you can see no matter on the internal network, or external network, they belong to the same IP range. The NAT is done on the same device. Is there a way 10.0.0.x can ping 1.1.1.y and 10.0.0.y can ping 1.1.1.x? I somehow can't make it work. I have a fairly long configuration so it's not easy to paste it all here. Could anybody please do an experiment and let me know the necessary config? BTW it's not ACL reason because I have tried to put "permit any any" on the outside interface but doesn't help... Thanks!
Developers hardcoding IP addresses should be talked sternly to. ;-p
You could try using a static if all else fails, I've used something similar in the past with success.
same-security-traffic permit intra-interface
static (inside,inside) 188.8.131.52 192.168.1.100 netmask 255.255.255.255
192.168.1.100 being the inside address
184.108.40.206 being the public address
Essentially it should look identical to your current 'static (inside,outside)' command with the exception of it being 'static (inside,inside)'