Configure static Port Address Translation (PAT) on the PIX.
Starting with PIX Software version 6.0, the PIX can be configured to translate ports destined to a single global IP address to multiple internal servers.
One place this would be useful is if you only have a single IP address available from your ISP, but your web server is on a different box than your mail server. You can use port redirection (static PAT) to accomplish this.
Address available from ISP: 184.108.40.206 Mail Server IP Address: 10.10.10.5 Web Server IP Address: 10.10.10.6
PIX commands are shown below.
static (inside,outside) tcp 220.127.116.11 25 10.10.10.5 25 netmask 255.255.255.255
static (inside,outside) tcp 18.104.22.168 80 10.10.10.6 80 netmask 255.255.255.255!--- Now that the port redirection is defined, we need
!--- to allow inbound access via an access list.access-list inbound permit tcp any host 22.214.171.124 eq 25
access-list inbound permit tcp any host 126.96.36.199 eq 80
access-group inbound in interface outside!--- Finally, if those two servers also need to initiate
!--- connections outbound, then we need to do PAT on
!--- them to the static address.nat (inside) 1 10.10.10.5 255.255.255.255
nat (inside) 1 10.10.10.6 255.255.255.255
global (outside) 1 188.8.131.52
HelloI currently am trying to host a local ip 10.x.x.x but intend to point it to a public IP 41.x.x.x. The Global DNS has been done I have attempted to do this via natting the network object which didn't workAlso I tried natting on the interfaces but...
Hi, I already implemented with success the Pxgrid using ISE anda FMC, and Self-registration on ISE and WLC, all is working.But on the FMC events , the "intiator user" dont show the guest user createad on ISE, is it possible to show the guest user?&nb...
Hi all, On an ASA 5505, is there a way to limit the bandwidth per user unless there is little activity, which would then allow the user more bandwidth. For instance, if I have a 100mb internet link, and give all connections a guaranteed 10mb, co...