I currently have a Static Nat for example ( web1-internal ) to ( web1-external ) - see Static Nat below !!!
Which allows external hosts to connect on a public address and then get translated to the internal address host !!
What l want to do now is permit http traffic from this internal host to outside but for some reason it is not working !!
I have tried adding a nat exempt rule using the inside host translated on the outbound interface with no luck
And also adding a access-list to the inside interface off :
access-list inbound_inside permit tcp host web1 any eq www
The current Static Nat rule is :
static (inside,outside) web1-xlate web1 netmask 255.255.255.255 tcp 1000 500
Example IP Addresses
web1 : 172.16.34.208
web1-xlate : 22.214.171.124
Let me know if you need more info or config !!!
The internal 172.16.34.208 can't get out to the Internet?
But you said is reachable from the Internet correct?
Is there an ACL applied to the inside interface? You can check with ''sh run access-group''
The other machines on the inside interface have Internet access as well?