Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
333
Views
0
Helpful
1
Replies

multiple static entries to same internal host?

triplecap
Level 1
Level 1

‎09-29-2005 04:08 PM - edited ‎03-09-2019 12:34 PM

Not sure if this is possible, but I have an internal host that needs to be accessed from the outside and from my dmz. In both cases the traffic will be initiated from the other side, not the internal host. Is this possible? My config will look something like this:

static (inside,outside) 2.2.2.2 1.1.1.1 netmask 255.255.255.255

static (inside,dmz) 3.3.3.3 1.1.1.1 netmask 255.255.255.255

access-list acl_outside permit tcp any host 2.2.2.2 eq 80

access-list acl_dmz permit tcp any host 3.3.3.3 eq 80

access-group acl_outside in interface outside

access-group acl_dmz in interface dmz

Will this work and is it supported?

Thanks in advance,

Eric

Labels:
0 Helpful
1 Reply 1

mehrdad
Level 3
Level 3

‎09-29-2005 09:18 PM

that's possible also you can use the below static to prevent translation between inside and dmz (literally speaking)

static (inside,dmz) 1.1.1.1 1.1.1.1 netmask 255.255.255.255

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents