This is beating me up. If anyone has a suggestion, please help.
I need web services to NAT to two different web servers behind the inside interface. Below are portions of my config. The NAT 0 is there becasue this is a PPTP and IPSec endpoint as well.
My issue is that port 80 and port 3389 access do not work to 126.96.36.199 but all access works to 188.8.131.52. I'm scratching my head. I also have the pix configured as a PPTP and IPSec endpoint if that matters.
access-list 101 permit ip 192.168.100.0 255.255.255.0 192.168.101.0 255.255.255.0
access-list 101 permit ip 192.168.100.0 255.255.255.0 10.1.1.0 255.255.255.0
access-list ipsec permit ip 192.168.100.0 255.255.255.0 10.1.1.0 255.255.255 .0
access-list 102 permit icmp any any
access-list 102 permit tcp any host 184.108.40.206 eq www
access-list 102 permit tcp any host 220.127.116.11 eq 3389
access-list 102 permit tcp any host 18.104.22.168 eq smtp
access-list 102 permit tcp any host 22.214.171.124 eq 3389
access-list 102 permit tcp any host 126.96.36.199 eq www
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...