asa,security level 100(Inside)内的192.168.10.x需访问security level 40(Test)内的192.168.0.x的特定端口。
Outside为对外公开ip地址
现已定义:
object network 192.168.0.11-9804
host 192.168.0.11
access-list Outside-in extended permit tcp any host 192.168.0.11 eq 9804
object network 192.168.0.11-9804
nat (Test,Outside) static interface service tcp 9804 9804
按此定义,可以从外网访问9804,但从inside访问失败。
何解?
谢谢!