Pete's Packet

Limitless

  • Catagories

  • Global visitors

    free counters

  • RSS CCIE Jobs – Metro NY area

    • Network Engineer
      TEKsystems New York, NY
    • Sr. Network Manager/Architect
      Donahue & Moore Associates, LTD. New York, NYJob description: ...Fiber) and Video Conferencing.Certificates in various network technologies are a must, and should include Cisco CCIE & CCNP.Excellent benefits package!Resumes first, please.  Please send your resume...
    • Pre-Sales Network Engineer
      Prism Partners, LLC. New York, NYJob description: ...in providing pre-sales engineering support. Senior Architect level knowledge in the following areas: Data Center, Virtualization Job Description: CCIE / CCNP level needed for Cisco Pre-Sales Engineering role with a national leading Cisco Partner. Enterprise Technology Solutions provider has...
    • Network Engineer - Data
      AMS Staffing Solutions Matawan, NJJob description: ...and/or 10+ years equivalent work experience.At least one certifications in the following list: CCIECCNE MCSE+Knowledge & Experience...
«
»

CSS/ASA can users on the inside access the VIP by its Public IP address

Posted by Peter Kurdziel on October 19, 2009

I’ve an ASA with a DMZ on which the CSS is connected.

Outside users connect to a public IP address which is statically NAT’d to the VIP on the CSS.
All is working well, but the customer wants to be able to use the public IP address (or DNS) from the inside network of the ASA.

If your existing static looks something like this for access from the outside…

static (dmz,outside) 1.1.1.1 2.2.2.2 netmask 255.255.255.255

all you have to do is add this static

static (dmz,inside) 1.1.1.1 2.2.2.2 netmask 255.255.255.255

Then anyone on the inside going to 1.1.1.1 will be sent do 2.2.2.2 in the dmz.

About these ads

This entry was posted on October 19, 2009 at 17:40 and is filed under Real World, Security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Cancel

Connecting to %s

«
»
 
Follow

Get every new post delivered to your Inbox.

%d bloggers like this: