Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Is it possible to define a second publicly accessible IP to a PIX501 in an access list + static route (out to in) to forward web server traffic to a natted host on the inside? Basically a client currently uses an Linux IPCOP firewall with a dmz inter...
I have a pix with one static outside IP address and have been asked to forward a whole bunch of UDP and TCP to an internal (natted) IP address. I have done static mappings before but for only single port numbers. Below is the range of ports to forwar...
Hi, sorry if this has been covered before. I need to provide vpn client access to a cisco pix 501 (6.3.5). The remote users will be behind a non cisco firewall (not that it should matter I guess). What port should the remote networks sysadmin open on...
I thought it might be possible but didn't want to reccommend this solution to the client and for it to not work...I think it would have been more prudent to deploy a firewall with a second interface but I may be able to sell them this idea...'aye, th...
thanks for taking time to look at this. The client gave me a second external IP I could define on the pix in a static + access list so I just forwarded all those object groups...bit of a cop out I know...thanks anywayG
Thanks for replying. I am unsure as to the implication of adding that line."static (inside,outside) tcp 1.1.1.1 640 access-list (name)" the pix in question already has a bunch of static mappings to other internal/natted IP's and the access list "inte...
Thanks for the link. After doing a bit of research (bit new to port object grouping) I have created the following group objectsobject-group service qsig1_tcp tcp port-object range 6400 8191object-group service rtp_udp udp port-object range 1500 150...
