Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Cisco > Help please - PIX501

Reply
Thread Tools

Help please - PIX501

 
 
MC
Guest
Posts: n/a
 
      10-24-2004
Guys & Girls
First of all I'm sorry if this is the wrong group, please suggest a more
suitable one if there is one.

I'm trying to set up a PIX 501 in a small office as follows:

We have a public IP range, for arguements sake:

212.37.38.202-206
Gateway 212.37.38.254

and a range of private ones:

192.168.1.2-192.168.1.200

I want to set up the PIX to use 212.37.38.202 on the outside interface and
allow the private IP's to access the internet from the inside interface.
The PIX will not be a DHCP server.

I've managed to acheive this (I think) using PAT. What I want to do now is
set up port forwarding so (for example) port 80 requests that come in on
212.37.38.202 get forwarded to 192.168.1.99. I'd like to do this for
various ports and various provate hosts.

First off, is this possible or do I need other equipment?

Any help most welcome.


MC



 
Reply With Quote
 
 
 
 
Jyri Korhonen
Guest
Posts: n/a
 
      10-24-2004
"MC" <maxcoppin@-don't-send-me-any-spam-btinternet.com> wrote:

> What I want to do now is set up port forwarding so (for example)
> port 80 requests that come in on 212.37.38.202 get forwarded to
> 192.168.1.99. I'd like to do this for various ports and various
> private hosts.


If you want to perform port forwarding using the IP address
of the outside interface as the global address then you need
something like this [Pix OS 6.3(x) assumed]:

static (inside,outside) tcp interface 80 192.168.1.99 80
access-list acl_out permit tcp any interface outside eq 80
access-group acl_out in interface outside

If you want to use some other global IP you have, then
the syntax is:

static (inside,outside) tcp 212.37.38.203 80 192.168.1.99 80
access-list acl_out permit tcp any host 212.37.38.203 eq 80
access-group acl_out in interface outside

 
Reply With Quote
 
 
 
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
PIX501 Port Forward In - Please Help dmillen Cisco 1 04-02-2010 03:24 PM
Sitting behind a local pix501 and can't access an external site with Pix501 from Cisco VPN CLient- why? simon Cisco 1 09-21-2004 12:52 PM
Help with PIX501 & CISCO 831 Router sw Cisco 2 04-29-2004 12:23 PM
Re: Pix501 VPN Woes - help needed Greg Cisco 0 07-16-2003 09:44 PM
Re: Pix501 VPN Woes - help needed Rik Bain Cisco 1 07-16-2003 05:39 PM



Advertisments