Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1222
Views
0
Helpful
1
Replies

How to NAT into 2 different public IP's on PIX?

jdean1
Level 1
Level 1

‎11-20-2006 09:01 AM - edited ‎03-11-2019 01:58 AM

I know this is possible, but I just can't figure out what the config would look like. The goal is to be able have a server farm inside a firewall answer requests that are destined to 2 different IP blocks during a migration period.

The internal server farm would be statically configured with New-ISP-Net ip's, so the pix would just translate requests destined to these ip's directly to the servers (if traffic is allowed via an acl of course).

This can be done with either a NAT 0 or static (inside,outside) x.x.x.x x.x.x.x.

The part I am trying to figure out is that we want to also allow those same servers answer request that come in for OLD-ISP-Net ip's. What is the best way to have the pix handle this dual/policy NAT situation?

Labels:
0 Helpful
1 Reply 1

mlowery
Level 1
Level 1

‎11-23-2006 12:58 AM

As long as the communication is initiated from outside and is stateful (ie TCP), you can add another inside IP address to the NIC of the server, then you would have 2 NAT translations on the PIX to the different internal IP addresses:

Server1: 192.168.1.1 & 192.168.1.2

static (inside,outside) 192.168.1.1 netmask 255.255.255.255

static (inside,outside) 192.168.1.2 netmask 255.255.255.255

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card