Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
526
Views
0
Helpful
3
Replies

PIX 6.2(2) 515 static translation using PAT ?

tsennett
Level 1
Level 1

‎01-15-2003 10:27 AM - edited ‎02-20-2020 10:29 PM

Is it possible to configure a static translation from the "inside" interface to the "outside" interface when using PAT ? Example an FTPserver on the Inside that you want public access to.

0 Helpful
3 Replies 3

steve.barlow
Level 7
Level 7

‎01-15-2003 10:50 AM

Yes,

eg.

global (outside) 1 x.x.x.1 (or global (outside) 1 interface)

nat (inside) 1 0 0

static (inside,outside) x.x.x.2 10.10.10.10 netmask 255.255.255.255 0 0

or

static (inside,outside) tcp interface ftp 10.10.10.10 ftp netmask 255.255.255.255 0 0

access-list outside_in permit tcp any host x.x.x.2 eq ftp

or

access-list outside_in permit tcp any host x.x.x.x eq ftp (where x.x.x.x is the ip of interface)

access-group outside_in in interface outside

Hope it helps.

Steve

0 Helpful

tsennett
Level 1
Level 1
In response to steve.barlow

‎01-15-2003 11:20 AM

I will try it and let you know, Thank you for your reply !

0 Helpful

tsennett
Level 1
Level 1
In response to tsennett

‎01-27-2003 12:12 PM

It seems that PAT IP Address prevents the first 2 possible solution from working .

I have not tried the third suggestion yet. In the third option Does the x.x.x.x represent the Outside or Inside Interface or should it be the actuall ip of the FTP server on the inside? Thanks for your assistance.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card