static NAT translations on multiple WAN interfaces (PIX 525)
i am trying to achieve the following and wonder if it's possible and if so, how to do it.
we have an internal LAN of 192.168.101.0/24. we have two WAN/outside connections & interfaces, lets say 188.8.131.52 & 184.108.40.206.
all internal traffic from 192.168.101.0 uses dynamic NAT overload on the 220.127.116.11 interface to get online and i have a few static NAT translations for severs on this connection. this works fine and is fairly standard.
i have a server on the IP address 192.168.101.10 that is a VoIP server and that needs to go down the internal 18.104.22.168 (due to QoS on this WAN interface). i am able to create a static NAT translation in the PIX for this rule, however i am confused about what default route the PIX needs to know for this connection.
currently the default route is for the 22.214.171.124 interface, and yet i can not add another default route for 126.96.36.199 without giving it a higher metric than the 188.8.131.52 interface. the 184.108.40.206 interface obviously needs a default route so it knows the path to the internet yet i am not sure how to do this. when using a Cisco router i have been able to create a route map to give different default routes to difference access lists and this has worked, however what do i do on the pix?
i hope i have explained the issue clearly enough and if anyone can assist that would be excellent
Hello,i have a N5k-k5548up-af and i have a acl for trusted network which is attached to line vty and to my uplinks interface, and i have around 250 interface vlan and my interface vlans can reach bgp port or snmp port, is there nayway that tune copp to pe...
This event had place on Tuesday 22nd, Septemberat 10hrs PDT
Omar Santos is an active member of the cyber security community, where he leads several industry-wide initiatives and standards bodies. His active role help...
Cisco Defense Orchestrator (CDO) is a cloud-based, multi-device manager that manages security products like Adaptive Security Appliance (ASA), Firepower Threat Defense next-generation firewall, and Meraki devices, to name a few.
We make improvement...
There has been a lot of grey area when one needs to get started with ISE or when one does not have any specific background.Could you please guide me to what are the thing that one needs to know inside out and what are the things which require only a minim...
Hello Guys, I'm trying to create a simple script to create new objects on FMC via API, but I'm facing issues(Python 3.8). Script(that pretty simple, I'm not programmer, but I'm trying): import base64import sysimport requestsimport reimport ...