Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
847
Views
0
Helpful
0
Comments

How to configure the PIX Firewall to allow multimedia applications with PAT to pass through

TCC_2
Level 10
Level 10

‎06-18-2009 03:54 PM - edited ‎03-08-2019 06:04 PM

Core issue

The PIX Firewall does not permit protocol-specific traffic, related to multimedia applications, to pass through it using Port Address Translation (PAT). Port mappings with PAT can confuse the PIX when it runs multimedia applications. 

PAT does not work with most H.323 multimedia applications and caching name servers. Some multimedia applications can conflict with port mappings provided by PAT. PAT does not work with the established command.

PAT works with these:

  • Domain Name System (DNS)

  • FTP and passive FTP

  • HTTP, email

  • Remote-Procedure Call (RPC)

  • Remote Shell (rshell)

  • Telnet

  • URL filtering and

  • The outbound traceroute command.

Resolution

To resolve this issue, refer to Configure and Troubleshoot the Cisco Secure PIX Firewall with a Single Internal Network.

Configuring Application Inspection (Fixup) categorizes a few applications and lists whether these applications work with NAT or PAT. Also, refer to the global command, which is used to configure PAT on PIX.

PIX Software Version

PIX version 4.x

PIX version 5.x

PIX version 6.x

PIX version 7.x

Labels:
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents