Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
784
Views
0
Helpful
3
Replies

PIX 501 and NAT

llockwood
Level 1
Level 1

‎10-04-2002 07:00 AM - edited ‎02-20-2020 10:17 PM

We have a need to use another VPN hardware/software solution. However, in order to use this other solution we need to be able to configure the 501 to pass the NATT'ed address 192.... to the VPN hardware in front of it.

0 Helpful
3 Replies 3

Nairi Adamian
Cisco Employee
Cisco Employee

‎10-04-2002 09:24 PM

What do you mean by passing the NATTed address on the pix?

You can configure nat (inside) 0 access-list 101 on the pix. This way the pix will not nat any traffic that matches the acl 101.

hope this helps

-Nairi

0 Helpful

llockwood
Level 1
Level 1
In response to Nairi Adamian

‎10-07-2002 05:30 AM

Nairi

We need the address on the inside of the network to pass through the PIX to

our VPN Hardware. We do want to NAT - but we want to control VPN access

through our VPN device.. If the originating paclket sourced from 192.168.xxx.xxx we want that to be the address the PIX sends to the VPN device.

Make sense ?

0 Helpful

Nairi Adamian
Cisco Employee
Cisco Employee
In response to llockwood

‎10-07-2002 08:17 PM

In that case you need to use nat (inside) 0 access-list 101 to disable NAT on a PIX Firewall.

ACL 101 will include traffic sourced from 192.168.x.x.

hope this helps,

-Nairi

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card