cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
814
Views
0
Helpful
3
Replies

PIX Dynamic NAT Issue

astanislaus
Level 2
Level 2

Here is the setup:

Scenario A

1. The network 1.1.1.0/23 is dynamically translated to 5.5.5.5 when accessing the resources 7.7.7.7 and 8.8.8.8 on port 443. This has been working for months, then last week it stopped working.

Scenario B

1. To resolve the problem on scenario A, host within the 1.1.1.0/23 network were statically translated to individual IP addresses. This is now working.

Scenario C

Another solution for scenario A is scenario C, the network 1.1.1.0/23 is translated to 5.5.5.5 upon reaching PIX, Identity NAT is applied and this setup is working.

Questions:

What caused the dynamic NAT to stopped working?

How can we restore dynamic NAT from working again?

Isolation shows that Static and Identity NAT are working.

NOTE: IP addresses here are not the actual IP Addresses in production.

3 Replies 3

astanislaus
Level 2
Level 2

Diagaram

Sorry. I thought the attaching file was not working and hence by mistake attached same diagram thrice.

Jon Marshall
Hall of Fame
Hall of Fame

Hi

Could you send the config of the pix.

Also could you let us know which scenario you are currently running so the pix config makes sense.

Thanks

Jon

Review Cisco Networking for a $25 gift card