My inside interface of the ASA is 10.10.10.1. Some of the servers have the private IP address of 192.168.100.0. Other servers have another private IP address 172.16.20.0. Is it possible to configure so that these servers communicate to each other? For example, I want to be able to ping from Server A with the private IP address of 192.168.100.10 to the Server B with IP address 172.16.20.5. Also, is it possible to configure these servers so that they can get on the internet?
Thanks for your prompt response, Halijenn. All internal subnets are connected to Cisco 6509. The default gateway of each internal network is configured on the Cisco 3750. The Cisco 3750 does the routing. The default gateway of the ASA is configured on Cisco 3750. Let me know if I still have not answered your questions or need additional information. Thanks.
For communication between internal networks as per the current design, it should already be working (ie: all internal networks should be able to communicate with each other through the inter vlan routing on the 3750).
For internet access from all the internal networks, you would need to configure the following on the ASA:
1) Routes for all the internal subnets towards the 3750.
2) NAT statement for all the internal subnets so it gets PAT to either a spare public ip address or the outside interface ip address for internet access.
3) If you have ACL configured on the inside interface, you would also need to allow all the internal subnets access to the Internet.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...