An ASA with inside, outside, DMZ1 and DMZ2 interfaces.(only DMZ are important here)
- DMZ1 have 172.16.1.0/24 , security-level 40
- DMZ2 have 172.20.3.0/24 , security-level 75 and a web server at 172.20.3.8
If I want to let the users from DMZ1 to access the web server from DMZ2, do I need a NAT with real addresses 172.16.1.0/24 and translated addresses 172.20.3.0/24 ?