I have two webservers on the inside interface. Currently one server is answering on port 80 and 443 to a public address 255.255.255.252 mask. I need to have the current server remain answering port 80. I need to have the other answer on 443. Is it possible to have the one public address to route each particular port to each particular server? I also have another public range on a 255.255.255.248 mask that is assigned to the DMZ. I cannot move either server to the DMZ because they need to remain in communication with each other on the local net since they are Novell in the same tree, unless someone has a suggestion. Forgive me for I am new to the PIX scene.
thanks for the reply. i already have these rules setup for the current Web Server that resides on the inside interface. i need to be able to make "PublicWeb" answer to port 80 at the public address and make the "SecureWeb" answer on port 443. for example. if someone types http://domain.com the traffic would be forwarded to the "PublicWeb" server residing on the LAN. If someone types https://domain.com the traffic would be forwarded to the "SecureWeb" server also residing on the LAN. here are my current rules.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...