Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
637
Views
0
Helpful
2
Replies

Help with basic config

prerak_patel
Level 1
Level 1

‎10-31-2006 12:57 PM - edited ‎03-09-2019 04:44 PM

What I need to do is verify IP connectivity tro' PIX. So I want to pass thro' all the traffic IN and OUT of PIX. Can I accomplish this with following config?

global (outside) 1 interface

nat (inside) 1 0.0.0.0 0.0.0.0 0 0

access-list from_inside permit any any

access-list from_outside permit any any

I am using external INT IP for PATTING towards the Internet. Do I need static map for the web server?

Labels:
0 Helpful
2 Replies 2

bob.bartlett
Level 5
Level 5

‎10-31-2006 01:05 PM

that should allow traffic to flow for testing but you should not allow traffic from outside in arbitrarily. Also if you are generating traffic from the outside inbound to test you will need a static NAT for whatever inside resources you are trying to access from the outside.

0 Helpful

Fernando_Meza
Level 11
Level 11

‎10-31-2006 06:36 PM

Hi .. with that configuration you will have Outbound access from teh inside only. The Inbound traffic even thought you are allowing it on the access list it requires a static NAT translation to make any device behind you PIX reachable from the Internet .. i.e lets say you have a web server behind your PIX with Ip 192.168.10.1 then you need to configure a Static NAT using a public Ip address so that users from the Internet can reach your web server ..i.e

static (inside,outside) 203.203.203.203 192.168.10.1 netmask 255.255.255.255

access-list from_outside extended permit tcp any host 203.203.203.203 eq www

I hope it helps .. please rate it if it does !!!

0 Helpful
Customers Also Viewed These Support Documents