Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
544
Views
0
Helpful
1
Replies

PAT with PIX (6.2)

mnlatif
Level 3
Level 3

‎01-07-2003 06:14 PM - edited ‎02-20-2020 10:28 PM

Hi,

I am using PAT with PIX firewall. I have observed that PIX translates the source port number (for the packet from inside host) to a port number less than 1023 (well known port numbers), while sending it to outside world.

1. Is there a way to configure PIX (using PAT) to choose port number greater than 1023 for translation?

2. OR Keep the source port number the same as was from the original host ?

Regards \\ Naman

0 Helpful
1 Reply 1

gfullage
Cisco Employee
Cisco Employee

‎01-07-2003 07:20 PM

The PIX wil translate the source port as follows (no way to change it):

- If the source port is TCP/UDP 1-511, then the PIX will PAT the SRC address to one in that range.

- If the source port is TCP/UDP 512-1023, then the PIX will PAT the SRC address to one in that range.

- If the source port is TCP/UDP 1024-65535, then the PIX will PAT the SRC address to one in that range.

The only way to make sure the PIX uses a number greater than 1023, is to make the originating host use a source port greater than 1023.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card