ASA V8.6 - Dynamic PAT users working but not static IPs
I'm trying to configure an ASA to replace my last PIX. Since the last ASA I did the language has changed. What we have are about two hundred normal users that need to surf and share one public IP from the ISP to get it done. I have about a few boxes inside the network that must have static public IPs. Some just need the IP whereas one is the SMTP server and two are web servers.
I am trying to get this in place by testing in this order: 1.normal surfing 2.SMTP 3.Web Servers. To test, at lunch I have been altering the last resort address on our internal router to point to the new firewall rather than the old. The config below works for the normal users to surf and their outside address shows 188.8.131.52 as it should to external websites. The smtp server however doesn't flow mail or hit the outside web to go to google. I think if I figure this out, I can just mimic the proper settings to get my Web Servers working. Any Ideas? Thanks for your help.
(All addresses have been changed to protect the innocent.)
You might also want to issue a clear xlate to purge all the existing NAT translations. I have seen old translations mess with new configurations. Just remember to do this outside of normal working hours or in a service window as users will lose their connection to the internet and will need to reconnect.
Please remember to select a correct answer and rate helpful posts
Please remember to rate and select a correct answer
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...