#####################################

Publicacion Policia
######################################
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
object network obj-hpblade05-192.9.200.168
host 192.9.200.168
object network obj-hpblade05-192.9.200.168
nat (INSIDE,DMZVPN) static 172.16.111.168
!
object network web_server2_dnfr
host 192.168.150.90
object network web_server2_dnfr
nat (INSIDE,DMZVPN) static 172.16.111.9
!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
access-list DMZVPN_IN remark Publicacion para Policia DNFR
access-list DMZVPN_IN extended permit tcp any object web_server2_dnfr eq 5000
access-list DMZVPN_IN remark Publicacion para Policia DNFR
access-list DMZVPN_IN extended permit tcp any object SRV-PORTALRUAT-01 eq 5000
!!!
access-list DNFR_access_in_1 extended permit tcp 172.17.17.80 255.255.255.248 host
172.16.111.9 eq 5000
access-list DNFR_access_in_1 extended permit tcp 172.17.17.80 255.255.255.248 host
172.16.111.168 eq 5000
access-list DNFR_access_in_1 extended permit icmp any any echo-reply
access-group DNFR_access_in_1 in interface DNFR

object network borrar_cdr

host 172.21.20.150
object network borrar_cdr
no nat (INSIDE,DMZVPN) static 172.16.111.10
!
object network borrar_cdr2
host 172.16.111.10
object network borrar_cdr2
no nat (DMZVPN,DNFR) static 172.17.17.84
!
object network borrar_cdr3
host 172.21.20.150
object network borrar_cdr3
nat (INSIDE,DNFR) static 172.17.17.84
!
interface GigabitEthernet1/0
nameif AXS1
security-level 0
ip address 190.181.5.44 255.255.255.248
no shutdown
!
interface Gi0/3
policy-route route-map map_dmzvpn
exit
!
no object network obj-172.16.111.4
!
object network obj-172.16.111.4
host 172.16.111.4
object network obj-172.16.111.4
nat (DMZVPN,AXS1) static 190.181.5.43
!
!
show policy-route
#############################
route AXS1 190.181.26.232 255.255.255.255 190.181.5.41
!
access-list pbr_dmzvpn_in permit ip host 172.16.111.4 192.9.200.128 255.255.255.192
access-list pbr_dmzvpn_in permit ip host 172.16.111.4 172.21.0.0 255.255.0.0
access-list pbr_dmzvpn_in permit ip host 172.16.111.4 192.168.0.0 255.255.0.0
!
access-list pbr_dmzvpn_out permit ip host 172.16.111.4 host 190.181.26.232
!
route-map map_dmzvpn permit 10
match ip address pbr_dmzvpn_in
set ip next-hop 192.9.200.129
!
route-map map_dmzvpn permit 20
match ip address pbr_dmzvpn_out
set ip next-hop 190.181.5.41
!
!!!!!!!!!!!!
access-list axs_municipios_10 permit ip host 190.181.5.44 any
access-list axs_municipios_10 permit icmp host 190.181.5.44 any
access-list axs_municipios_10 permit ip any any
route-map map_axs_municipios permit 10
match ip address axs_municipios_10
set ip next-hop 190.181.5.41
!

interface GigabitEthernet1/0
policy-route route-map map_axs_municipios