Home > IT Answers > Natting in PIX ???
Help

Question

  Asked: Jun 13 2005   6:30 AM GMT
  Asked by: keshav

Natting in PIX ???


Features/Functionality

Hi Members,

I have a requirement for accessing one of our server in inside segment using nat ip from inside segment.

I have configured static nat but it is only for those connections initiated from outside and not from inside.

Connections initiated from outside (internet) to this natted ip of my inside server works fine . However one of our application from inside needs to communicate to the natted ip of a server in inside segment.

As to my knowledge , pix doesnot have this feature and seems to be a limitation.

Has anyone got a diff: opinion or work around ?

Many Thanks.

Subscribe to Alerts! Get questions and answers delivered to your Inbox.


E-mail me updates on this question



   SUBSCRIBE

hidden modal window
Help

Answer Wiki (Improve, edit or add to this answer)

IMPROVE THIS ANSWER
View History
 RATE THIS ANSWER
0
Click to Vote:
  •   0
  •  0
Last Answered: Jun 15 2005  2:45 PM GMT  by jclarkfl




I am not really sure off your design. But PIX has no problem Natting between any subnets.

Are both of these networks connected into diffrent interfaces in the PIX.

Like Inside, Outside, DMZ1, DMZ2 etc.

The Security setting that you place on the firewall manages whether you need to nat. When going from lower security to higher security etc.

Look at the Global and Nat commands in the PIx. These should help. Use the Static when you are comingfrom outside to inside as you are.

Also, cisco has some great DOC's on Natting in the PIX.
  • AddThis Social Bookmark Button


RSS - Discussions Help

Discuss This Answer


You must be logged-in to discuss a question. Log-in/Register