I'm trying to set up my ASA (running v8.3(1)) to allow traffic from my web server on my DMZ to access one of my internal servers (server B) over port 80. I have configured the static translation to translate from my DMZ ip address scheme to the IP address of the internal server (server B). I have also set up an ACL that allows traffic from my web server to server B over port 80 (access list is high in order before any deny statements). When I try to access the internal server the packet is getting dropped because of the implicit "deny any any" ACL. It's as though the ACL I've created is getting completely ignored.
Sample config is as follows:
object network obj-web
nat (inside,dmz) static 184.108.40.206
obj-web address is 220.127.116.11
access-list acl_allow_dmz extended permit tcp host 18.104.22.168 host 22.214.171.124 eq www
What am I missing?