I have an Outlook Web Access front end server setup in our internal network. I can connect to it successfully from all internal addresses including our DMZ.
I need to publish OWA to the Internet and I have an external IP address set specifically for this purpose. I have setup the Access Rules and NAT rules identical to what is already setup for the external IP addresses of our web server, but I can't this new address to work. Here's the commands I have set:
access-list outside_acl extended permit tcp any host 66.xxx.xxx.235 eq www
access-list outside_acl extended permit tcp any host 66.xxx.xxx.235 eq https
static (inside,outside) tcp 66.xxx.xxx.235 www 10.xxx.xxx.35 www netmask 255.255.255.255
static (inside,outside) tcp 66.xxx.xxx.235 https 10.xxx.xxx.35 https netmask 255.255.255.255
From what I've read these are the only commands I need to forward those ports from our external IP address to one of our internal addresses.
Are these commands correct?
Any help would be greatly appreciated.