Cannot get DMZ clients access Servers on inside

[YPT]

Below is an excerpt from my configuration where users on the gizmo dmz can connect through VPN
to site gizmo and through outside interface to the internet. I need those users to access
some servers on the inside namely 192.168.0.5-192.168.0.7
when I add
access-group gizmo_access_in in interface gizmo
line their connectivity to the internet gets cut and they can access the internal servers
I need both acesses can you help ?

thank you
YPT

access-list no_NAT_gizmo permit ip gizmocom 255.255.255.0 gizmo11 255.255.255.192
access-list no_NAT_gizmo permit ip gizmocom 255.255.255.0 gizmo12 255.255.255.224
access-list no_NAT_gizmo deny ip any any
access-list gizmo_access_in permit ip gizmocom 255.255.255.0 host 192.168.0.5
access-list gizmo_access_in permit ip gizmocom 255.255.255.0 host 192.168.0.6
access-list gizmo_access_in permit ip gizmocom 255.255.255.0 host 192.168.0.7
access-list gizmo_access_in deny ip any any
ip address gizmo 192.168.10.1 255.255.255.0
nat (gizmo) 0 access-list no_NAT_gizmo
nat (gizmo) 1 0.0.0.0 0.0.0.0 0 0
static (inside,gizmo) 192.168.0.5 192.168.0.5 netmask 255.255.255.255 0 0
static (inside,gizmo) 192.168.0.6 192.168.0.6 netmask 255.255.255.255 0 0
static (inside,gizmo) 192.168.0.7 192.168.0.7 netmask 255.255.255.255 0 0
access-group gizmo_access_in in interface gizmo

 

[Supergrrover]

This is the line that kills all other traffic.
access-list gizmo_access_in deny ip any any

You should add permit statments to allow whatever traffic you want out to the internet
access-list gizmo_access_in permit ip any any
or just restrict it 80,443,110,143,25, etc.

Brent
Systems Engineer / Consultant
CCNP, CCSP