2nd aryoba
, which direction are you trying to make traffic work from and to?
Looks like you got a standard INSIDE/OUTSIDE config with nat -- I'll defer to what aryoba
mentioned about your NAT'ing, but the thing to keep
in mind is you've got the following access-groups configured
access-group inside_access_in in interface inside
access-group outside_access_in in interface outside
and the following access-list for INSIDE to OUTSIDE access
access-list inside_access_in extended permit ip any any
access-list inside_access_in extended permit object-group TCPUDP any any
access-list inside_access_in extended permit object-group TCPUDP any any eq www
and the following access-list for OUTSIDE to INSIDE access.
access-list outside_access_in extended permit ip any any
access-list outside_access_in extended permit object-group TCPUDP any any
Are you trying to restrict traffic in any way? Or are you intent on letting all traffic from INSIDE to OUTSIDE without restrictions, but not allow
any traffic from OUTSIDE to INSIDE at all?
I think the key question for you to answer at this point, OP
My 00000010bits
Regards