I've posted a few times before regarding and issue where I after a firewall migration suddenly loose external and internal access to services with static entires in my FWSM. The only hint I have is a show xlate where both the local and global IP is the external IP for the static.
Now, a few days ago I retried the migration and had no problems until I finally moved the statics for our two DNSes with authority over our domain. As soon as these statics were entered in the FWSM and traffic was redirected from our edge routers I saw the duplicate IPs in the logs and lost connectivity.
I've sent this to a few CCIE guys but no answer yet.
My only guess is something with DNS inspection, which is configured default on, but I need this feature for my outside NAT.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...