Hi - I have this question because I need to log the IP addresses of requests to a web-proxy server.
The current web-proxy server is in a DMZ, traffic is in the identity NAT rules and the source IP is passed through the firewall to the server and logged.
I have set up a test web-proxy server which is in another DMZ, but I need to access this with an 'inside' IP address, rather than the true 'DMZ' IP address. I have tested this using a policy Static NAT (so that VPNs can access it too - please refer to https://supportforums.cisco.com/thread/2013181) and I have everything working except the logging; all requests now log with the firewalls DMZ interface rather than the true source IP.
Is there any way round this?