Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
270
Views
0
Helpful
1
Replies

PIX NAT

justin.donoghue
Level 1
Level 1

‎05-19-2005 07:50 AM - edited ‎02-21-2020 12:09 AM

Hi I have a problem with NATing and Pix. I have a Linux machine doing mail scanning on the inside network. I am forwarding all mail on port 25 to this machine. However this machine is also acting as a firewall for another internet connection and is placing all reply traffic coming from outside the Pix on it's gateway instead of the Pix.

My question is whether I can translate the external mail IP addresses (which are random) and make the Linux machine see them as being internal IP address(es) so it can respond locally to them. Currently it sees them as public IP connections on port 25 and responds out it's gateway. I have the usual: static(inside,outside)external_mail_ip internal_mail_ip

access-list permit tcp any external_mail_ip eq 25 (applied to external interface)

Any pointers appreciated thanks

0 Helpful
1 Reply 1

bowser
Level 1
Level 1

‎06-13-2005 04:05 PM

what your looking for is DNS doctoring. It can be applied by using the static command. Have a search and it's quite easy.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card