Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
988
Views
0
Helpful
2
Replies

Port Translation on Pix 7.2(2)

ssykes
Level 1
Level 1

‎04-26-2007 06:31 AM - edited ‎03-11-2019 03:04 AM

When I do a static NAT on the Pix:-static (inside,outside) 172.16.1.2 192.168.1.2 netmask 255.255.255.255

I can see the inside IP address 192.168.1.2 is translated to 172.16.1.2 on the outside interface using the network sniffer. However if I introduce a port translation :-

static (inside,outside) tcp 172.16.1.2 www 192.168.1.2 8080 netmask 255.255.255.255 then the sniffer picks up the inside address on the outside interface and not the 172.16.1.2 address.

What have I missed here?

Labels:
0 Helpful
2 Replies 2

ecouto
Level 1
Level 1

‎04-26-2007 07:03 AM

I think you need to add "outbound" nat rules too.

static (inside,outside) tcp 172.16.1.2 www 192.168.1.2 8080 netmask 255.255.255.255

only will translate and forward port when traffic is coming from outside to the external address (172.16.1.2). But if you want to go from inside (192.168.1.2) to outside, you need to add this:

global (outside) 1 172.16.1.2

nat (inside) 1 192.168.1.2 255.255.255.255

Cheers,

Emilio

0 Helpful

ssykes
Level 1
Level 1
In response to ecouto

‎04-27-2007 05:41 AM

Thanks Emilio,

I had worked out that the dynamic nat rule would give me the desired effect, however I was querying why this was uneccessary if you didnt do a PAT on the original rule.

Cheers

S

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card