I'm trying to set up my ASA (running v8.3(1)) to allow traffic from my web server on my DMZ to access one of my internal servers (server B) over port 80. I have configured the static translation to translate from my DMZ ip address scheme to the IP address of the internal server (server B). I have also set up an ACL that allows traffic from my web server to server B over port 80 (access list is high in order before any deny statements). When I try to access the internal server the packet is getting dropped because of the implicit "deny any any" ACL. It's as though the ACL I've created is getting completely ignored.
Sample config is as follows:
object network obj-web
nat (inside,dmz) static 18.104.22.168
obj-web address is 22.214.171.124
access-list acl_allow_dmz extended permit tcp host 126.96.36.199 host 188.8.131.52 eq www
What am I missing?