Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
296
Views
0
Helpful
2
Replies

PAT'ing inbound ports

haver
Level 1
Level 1

‎07-21-2003 02:24 AM - edited ‎03-09-2019 04:07 AM

Is it possible to translate destination ports traversing the PIX? I have a situation where I need to translate destination port 80/tcp to 30080/tcp on outside interface going to a DMZ (public IP range).

Furthermore, this should only be done for specific source IPs.

client = 192.168.0.5

pix outside = 192.168.1.1

pix dmz = 192.168.2.1

server = 192.168.2.2

192.168.0.5:1234 -> 192.168.2.2:80 should be translated by PIX to 192.168.2.2:30080, without modifing anything else but port number.

Can this be done?

TIA

Labels:
0 Helpful
2 Replies 2

l.mourits
Level 5
Level 5

‎07-21-2003 03:47 AM

Hi,

It is possible to translate port numbers for one destination system via the following command:

static (dmz,outside)tcp 192.168.2.2 80 192.168.2.2 30080

But I can not think of a way to do it depending on the source address of the initiator.

Hope this helps,

Leo

0 Helpful

jmia
Level 7
Level 7

‎07-21-2003 04:37 AM

Hello Haver,

Please read the following link, might be of help:

http://www.cisco.com/warp/public/707/28.html#topic9

Hope this helps -

0 Helpful
Customers Also Viewed These Support Documents