Configuring routing from internal interface to NATed Public IP on another internal interface.

Unanswered Question

I have ASA with two DMZ interfaces. I have requirement to route trafic from one device in first DMZ zone to a Public NATed IP of the device in second DMZ zone. Example: first DMZ 10.10.10.0/24, second DMZ 10.10.11.0/24

Device in first DMZ has ip 10.10.10.5

Device in second DMZ has IP 10.10.11.5 NATed to Public IP(75.147.77.125) Requirement for my solution to work device from first DMZ needs to call device in second DMZ by Public IP (not private)

How can i configure my ASA to do that?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Federico Coto F... Thu, 08/26/2010 - 16:44

Hi,

static (DMZ2,DMZ1) 75.147.77.125 10.10.11.5

With the above command the following will happen...

When hosts on the DMZ1 try to talk to 75.147.77.125 (which is the NAT IP for the server on DMZ2)... the ASA will send it to the DMZ2 interface (instead than sending it to the outside as it would normally do).

Federico.

Actions

This Discussion