Assume we are using an ASA with three zones configured,the security level of the each interface is as below,
Also assume I have IP scheme 126.96.36.199/24 for inside,188.8.131.52/24 for trusted and 184.108.40.206/24 for outside.
I want to allow/permit the users from Trusted ,outside zones to inside without translation.
Please let me know the below configuration will work.
nat(trusted) 0 access-list nonattrust
nat(outside) 0 access-list nonatoutside
access-group outside in interface outside
access-group trust in interface trusted
access-list trust permit tcp host 220.127.116.11 host 18.104.22.168 eq 80
access-list nonattrust permit ip host 22.214.171.124 host 126.96.36.199
access-list outside permit tcp host 188.8.131.52 host 184.108.40.206 eq 80
access-list nonatoutside permit ip host 220.127.116.11 host 18.104.22.168
I am aware that for an inbound connection(lower to higher) static translation is required,but heared from one of my collegue that the above config will work.
Expecting an earliest reply.
Thanks and Regards,