Easy one..
the error you've mentioned is expected. The fix is use policy-nat for this
kind of scenario.
1. Create 2 ACLs - acl1 and acl2
ACL1 - permit any eq smtp host <mailserver1>
ACL2 - permit any eq smtp host <mailserver2>
then
2. configure POLICY NAT.
static (d,o) access-list ACL1
static (d,0) access-list ACL2
clear xlate
clear local-h
show xlate | in <blah>
HTH
On Sun, Sep 4, 2011 at 7:28 PM, Mahmoud Nossair
<mahmoud.nossair_at_gmail.com>wrote:
> Dear Experts
>
> How could I map two outside addresses (Global IPs)to the same inside Server
> in ASA 5520 firewall?
> Actually we have an SMTP server gateway, and two Exchange servers
> connecting
> to it, so how can I redirect all external SMTP traffic for the Exchange
> servers and send it to the SMTP gateway.
>
> When I do this on the firewall, I got an error
>
> static (dmz,outside) tcp x.x.6.5 smtp 192.168.1.11 smtp netmask
> 255.255.255.255 static (dmz,outside) tcp x.x.6.8 smtp 192.168.1.11 smtp
> netmask 255.255.255.255
> ERROR: duplicate of existing static
> TCP dmz:192.168.1.11/25 to outside:x.x.6.5/25 netmask 255.255.255.255
>
> Please advise
>
> Thanks in advance
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Sun Sep 04 2011 - 21:53:17 ART
This archive was generated by hypermail 2.2.0 : Sat Oct 01 2011 - 07:26:25 ART