Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
582
Views
9
Helpful
4
Replies

PDM 3.0 on PIX 515E with 6.3(4) and ALIAS command

josky.jara
Level 1
Level 1

‎02-07-2006 07:59 AM - edited ‎02-21-2020 12:41 AM

I'm a newbie on this and I tried (without luck) to connect to the PDM after many attempts, I get the message that PDM found the ALIAS command in it cannot continue, the message recommend to use Outside NAT, but I don't know how replace fine...

the alias command is used like this:

alias (inside) 10.1.0.07 A.B.C.6 255.255.255.255

alias (inside) 10.1.0.08 A.B.C.7 255.255.255.255

alias (inside) 10.1.0.09 A.B.C.8 255.255.255.255

alias (inside) 10.1.0.10 A.B.C.9 255.255.255.255

where A.B.C.x are public IPs.

Could someone show me how translate this commands to use the NAT ouside?

thanks in advance

0 Helpful
4 Replies 4

Patrick Laidlaw
Level 4
Level 4

‎02-07-2006 11:24 AM

Hello Josky,

This is how you would setup a static nat translation. If you'll notice that it says inside then outside and then flips the outside ip first with the inside second. This is not a typo but how the pix does it.

static (inside, outside) 7.7.7.7 10.1.0.7 netmask 255.255.255.255

static (inside, outside) 8.8.8.8 10.1.0.8 netmask 255.255.255.255

static (inside, outside) 9.9.9.9 10.1.0.9 netmask 255.255.255.255

static (inside, outside) 10.10.10.10 10.1.0.10 netmask 255.255.255.255

Once you have your nat in place you'll have to create an access-list and apply it to the outside interface to actually allow the traffic in.

If you need more help with this don't hesitate to ask.

Patrick

HTH please rate any posts that were helpful.

josky.jara
Level 1
Level 1
In response to Patrick Laidlaw

‎02-07-2006 12:38 PM

I was checking my configuration (the pix 515E was configured by another person) and I found the following:

alias (inside) 10.1.0.6 2.7.8.6 255.255.255.255

alias (inside) 10.1.0.7 2.7.8.7 255.255.255.255

alias (inside) 10.1.0.8 2.7.8.8 255.255.255.255

static (inside,outside) 2.7.8.6 10.1.0.6 netmask 255.255.255.255 0 0

static (inside,outside) 2.7.8.7 10.1.0.7 netmask 255.255.255.255 0 0

static (inside,outside) 2.7.8.8 10.1.0.8 netmask 255.255.255.255 0 0

access-group 101 in interface outside

the static commands are like you recommend me,

with this I have to do anything more (simply delete the all alias commands??)

thanks again!!

0 Helpful

Patrick Laidlaw
Level 4
Level 4
In response to josky.jara

‎02-07-2006 02:57 PM

Yep Just delete the Alias commands.

josky.jara
Level 1
Level 1
In response to Patrick Laidlaw

‎02-07-2006 03:48 PM

I'll try :)

thanks

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card