Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Redirect outside IP request to inside host

Hi,

Wondering if on the ASA (8.4) its possible to do something like what DNS rewrite does, but with IP requests.  Scenario.  Mobile phone accesses a web app inside our network fine over cellular.  Once it comes inside on to wifi it still has the public IP address cached so the ASA doesn't allow its request to loop around and the app appears broken.  We're considering lowering the TTL on the DNS host entry but I think we are battling phones/mobile OS's that don't have a strict adherence to name resolution standards.  A lot just seem  to refresh their caches every 10-15 minutes.

4 REPLIES
Super Bronze

Redirect outside IP request to inside host

Hi,

Is the resource in the same private IP range behind the ASA than the mobile phone when its using Wifi?

Or is the web server on some DMZ segment of the ASA?

New Member

Redirect outside IP request to inside host

They are on different VLANS behind the firewall.

Super Bronze

Redirect outside IP request to inside host

Hi,

Are those Vlans trunket to the ASA? Is every Vlan its own interface on the ASA I mean?

I guess you have a static NAT for the web server towards outside but the mobile devices keep connecting to the public IP address even after the Mobile -> Wifi change?

New Member

Redirect outside IP request to inside host

The ASA has its own VLAN connected to our switch that handles all the VLAN routing internally. Default route goes back out to the ASA

We do have a static NAT set up, and you are correct about thwe behaviour of the mobile device when it changes to WiFi.

393
Views
0
Helpful
4
Replies