Hey Guys,

 

I have the following scenario, What would be best way to implement it?

 

ASA version 9.3
==================================================================================
R1 (1.1.1.1/24)-----(11.11.11.1/24)(OUTSIDE SECURITY LEVEL=0)ASA(INSIDE SECURILY LEVEL=100) (22.22.22.1/24)-----R2(2.2.2.1/24)
2.2.2.1 translated to 11.11.11.40 in ASA.


R1(1.1.1.1)-telnets to R2(2.2.2.2) -- Should Succeed
R1(1.1.1.1)-telnets to R2(Translated ip of R2 11.11.11.40) -- Should Fail

 

R3 (3.3.3.1/24)-----(11.11.11.1/24)(OUTSIDE SECURITY LEVEL=0)ASA(INSIDE SECURILY LEVEL=100)(22.22.22.1/24)-----R2(2.2.2.1/24)
2.2.2.1 translated to 11.11.11.40 in ASA.
R1(3.3.3.1)-telnets to R2(2.2.2.2) -- Should Succeed
R1(3.3.3.1)-telnets to R2(Translated ip of R2 11.11.11.40) -- Should Fail

 

R5 (5.5.5.1/24)-----(11.11.11.1/24)(OUTSIDE SECURITY LEVEL=0)ASA(INSIDE SECURILY LEVEL=100)(22.22.22.1/24)-----R2(2.2.2.1/24)
2.2.2.1 translated to 11.11.11.40 in ASA.
R1(5.5.5.1)-telnets to R2(2.2.2.2) -- Should Fail
R1(5.5.5.1)-telnets to R2(Translated ip of R2 11.11.11.40) -- Should Succeed

 

 

Cheers,

KP