Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Server with hardcoded global IP needs to go behind ASA

I have a server that needs two nic's, a public address on one and a private/inside IP on the other. The server needs to have a public IP since the application is hardcoded to use it. Obviously, it is not secure to have a public ip of a server on the outside of the ASA. I'm trying to find a way to put it behind the ASA but keep the public address. If they had two public ranges this would't be a problem. Does any one have any ideas? I'm basiclly trying to figure a way around the fact that there can not be two interfaces with the same ip range.

Community Member

Re: Server with hardcoded global IP needs to go behind ASA

You can try assigning a small /30 subnet from your public IPs using one of your ASA interface and connecting it to the 'Public'.

That way you can make use of a public IP for your server and connect it to this interface.

As for routing wise, set your default route via the 'Public' interface and static routes individually for the internal LANs.

CreatePlease to create content