Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
262
Views
0
Helpful
2
Replies

fwsm 2.2

emily
Level 1
Level 1

‎06-22-2004 05:44 AM - edited ‎03-09-2019 07:49 AM

Recently , I test fwsm 2.2 with transparent context and MSFC inside , i found inside of protect server that didn't any static map just only used access-list,then outside user can ftp or www connect inside server , that diff other pix 500 appliance which need static and access-list

i want to confirm is true ?

Labels:
0 Helpful
2 Replies 2

irelandsky
Level 1
Level 1

‎06-22-2004 07:14 AM

Hi,

if you have enabled the "same-security-level permit inter interface" command, all the interface on the FWSM with the same Security ID don't need of the static command ( so nat is not required)

Older release and the pix 500 family require nat from high security int to lower sec interface

Hope this is helpfull for you

Ciao

Marco

0 Helpful

emily
Level 1
Level 1
In response to irelandsky

‎07-02-2004 01:30 PM

Hello

Thanks for you reponse , i didn't used "same-security-level permit inter interface" , that just only used access-list , the outside user then can connect to inside server , configure same as URL:http://www.cisco.com/en/US/products/hw/switches/ps708/products_module_configuration_guide_chapter09186a00802010bd.html example 5

whether or not need to configure static map for inside server ?

0 Helpful
Customers Also Viewed These Support Documents