02-07-2007 05:22 AM - edited 03-11-2019 02:30 AM
Here is the setup:
Scenario A
1. The network 1.1.1.0/23 is dynamically translated to 5.5.5.5 when accessing the resources 7.7.7.7 and 8.8.8.8 on port 443. This has been working for months, then last week it stopped working.
Scenario B
1. To resolve the problem on scenario A, host within the 1.1.1.0/23 network were statically translated to individual IP addresses. This is now working.
Scenario C
Another solution for scenario A is scenario C, the network 1.1.1.0/23 is translated to 5.5.5.5 upon reaching PIX, Identity NAT is applied and this setup is working.
Questions:
What caused the dynamic NAT to stopped working?
How can we restore dynamic NAT from working again?
Isolation shows that Static and Identity NAT are working.
NOTE: IP addresses here are not the actual IP Addresses in production.
02-07-2007 05:27 AM
02-07-2007 05:28 AM
Sorry. I thought the attaching file was not working and hence by mistake attached same diagram thrice.
02-07-2007 05:33 AM
Hi
Could you send the config of the pix.
Also could you let us know which scenario you are currently running so the pix config makes sense.
Thanks
Jon
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide