Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
813
Views
0
Helpful
3
Replies

PIX Dynamic NAT Issue

astanislaus
Level 2
Level 2

‎02-07-2007 05:22 AM - edited ‎03-11-2019 02:30 AM

Here is the setup:

Scenario A

1. The network 1.1.1.0/23 is dynamically translated to 5.5.5.5 when accessing the resources 7.7.7.7 and 8.8.8.8 on port 443. This has been working for months, then last week it stopped working.

Scenario B

1. To resolve the problem on scenario A, host within the 1.1.1.0/23 network were statically translated to individual IP addresses. This is now working.

Scenario C

Another solution for scenario A is scenario C, the network 1.1.1.0/23 is translated to 5.5.5.5 upon reaching PIX, Identity NAT is applied and this setup is working.

Questions:

What caused the dynamic NAT to stopped working?

How can we restore dynamic NAT from working again?

Isolation shows that Static and Identity NAT are working.

NOTE: IP addresses here are not the actual IP Addresses in production.

Labels:
0 Helpful
3 Replies 3

astanislaus
Level 2
Level 2

‎02-07-2007 05:27 AM

Diagaram

Preview file
31 KB
0 Helpful

astanislaus
Level 2
Level 2
In response to astanislaus

‎02-07-2007 05:28 AM

Sorry. I thought the attaching file was not working and hence by mistake attached same diagram thrice.

0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame

‎02-07-2007 05:33 AM

Hi

Could you send the config of the pix.

Also could you let us know which scenario you are currently running so the pix config makes sense.

Thanks

Jon

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card