Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
So, I'm looking at the NAT-control command in PIX 7 and thought of a hypothetical situation:1) Let's say I disable NAT control with the 'no nat-control' command. I have public IPs in my DMZ, so I don't want to have to mess with a static statement to ...
Is there any difference between using the alias command in its destination NAT form, vs. using the static command in its inbound NAT form? Just a personal preference, but I find using the static command a little easier, but I want to make sure I'm no...
We have all seen various postings hinting new features that are targeted for 7.0. So, without getting anyone fired, can somone list them all (or other possible goodies) in one place, like... say... this post???
Also, don't forget that unless you are using syslog over TCP, syslog is based on UDP (i.e. "spray and pray"). There is no guarantee of delivery with UDP, so occasional messages could be dropping within your network.
You do not necessarily need to nat, but you would have to do a no nat config. The following would work:For this example, assume the host accessible in the DMZ is 172.16.2.1, you want http to go to that server, and that address is routable on the Inte...
You need valid Smartnet maintenance on your firewall to access the PIX OS downloads. Your Smartnet contract will also need to be linked to your Cisco.com profile for the files to be accessable.
Just a thought in my head...You can do what you want inbound to the PIX by setting up the appropriate NAT translations on teh PIX, then adding some static routes into your Internet router to point the three different IP ranges towards your PIX.Going ...
I had the same question, and I found out the answer the hard way. It appears the tunnel-group name is absolutely relevant to the crypto maps. Let me explain:I had a PIX 6.3(3) firewall with the following commands (IP substituted for obvious reasons):...
