Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
435
Views
0
Helpful
1
Replies

Pix 515 static command question

jeremy.abrams
Level 1
Level 1

‎02-05-2003 08:59 AM - edited ‎02-20-2020 10:32 PM

I have a Pix 515 ver 6.2 that I'm trying to create a static map between my inside and DMZ interface. I have a host in the dmz that needs to access a database on the inside. I've tried setting it up several different ways, but when I following the manual I can't get it to work.

My inside interface is 192.168.114.1/24 and my DMZ interface is 10.61.3.1/24.

I created the following static per the manual:

static (inside,dmz) 10.61.3.1 host 192.168.114.5 netmask 255.255.255.255

access-list acl_dmz permit tcp 10.61.3.0 255.255.255.0 host 10.61.3.1

access-group acl_dmz in interface dmz

I've tried this static with a few different access-list but still couldn't get the traffic to use the static.

What I ended up doing to get it working was creating a static like this:

static(inside,dmz) 192.168.114.0 192.168.114.0 netmask 255.255.255.255

access-list acl_dmz permit tcp 10.61.3.0 255.255.255.0 host 192.168.114.5

access-group acl_dmz in interface dmz

Is this the correct way of doing it or is there a better way ?

Thanks

0 Helpful
1 Reply 1

Not applicable

‎02-05-2003 10:24 AM

Jeremy:

(for some reason the previous post did not appeared!)

go here:

http://forums.cisco.com/eforum/servlet/NetProf?page=netprof&CommCmd=MB%3Fcmd%3Ddisplay_location%26location%3D.ee915af

I had the same problem.. I posted one configuration file that works!

ciao

Luis

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card