GroupStudy.com GroupStudy.com - A virtual community of network engineers
 Home  BookStore  StudyNotes  Links  Archives  StudyRooms  HelpWanted  Discounts  Login
Re: PIX Static issue [7:85298] posted 03/03/2004
[Chronological Index] [Thread Index] [Top] [Date Prev][Date Next] [Thread Prev][Thread Next]


you seem to be using the correct commands, i can't figure out why it's not
working.
any other configuration preventing it from working? email me the config if
you wanna proceed.
mail me directly at bill_wharton AT mailhost.cjb.net


""bob""  wrote in message
news:200403022047.i22Kl5nR010990@xxxxxxxxxxxxxxxxx
> Somehow it took the IPs off...here it is again. Thanks
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On Behalf Of
bob
> Sent: Tuesday, March 02, 2004 1:37 PM
> To: cisco@xxxxxxxxxxxxxx
> Subject: PIX Static issue [7:85298]
>
> I'm having issues configuring Port redirection on PIX 515 version 6.3(3)
>
> I have one public IP  (000.000.000.001) that needs to be redirected to 2
> internal IPs on different ports.
> Pub IP: 000.000.000.001
> Priv IP: 172.16.20.1, 172.16.20.2
>
> I tried the following statements:
> static (inside,outside) tcp 000.000.000.001 https 172.16.20.1 https
> netmask 255.255.255.255 0 0
> static (inside,outside) tcp  000.000.000.001 ftp 172.16.20.1 ftp netmask
> 255.255.255.255 0 0
> static (inside,outside) tcp  000.000.000.001 1521 172.16.20.2 1521
> netmask 255.255.255.255 0 0
>
> conduit permit tcp host  000.000.000.001 eq https any
> conduit permit tcp host  000.000.000.001 eq ftp any
> or
>
> conduit permit tcp host  172.16.20.1 eq https any
> conduit permit tcp host  172.16.20.1 eq ftp any
> None of them work.
>
> If I do a NAT entry:
> static (inside,outside) 000.000.000.001 172.16.20.1 netmask
> 255.255.255.255 0 0
>
> It works, but now I cant redirect the traffic on 1521 to the other
Internal
> IP (172.16.20.3)
>
>
> Please advice.
>
> Thanks
> **Please support GroupStudy by purchasing from the GroupStudy Store:
> http://shop.groupstudy.com
> FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> **Please support GroupStudy by purchasing from the GroupStudy Store:
> http://shop.groupstudy.com
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=85311&t=85298
--------------------------------------------------
**Please support GroupStudy by purchasing from the GroupStudy Store:
http://shop.groupstudy.com
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html