Static NAT, a bit confused

Discussion in 'Cisco' started by =?ISO-8859-1?Q?=22Edgar=AE_du_Luxembourg=AE_=28pro, Sep 17, 2005.

  1. Hi guys,

    I am testing an HA PIX 515 with 3 network interfaces. I've done a small
    diagram that can be seen there - http://cjoint.com/data/jroN3wkUoC.htm

    On the diagram, 3 servers. One is located on the external network in a
    zone having "0" security, another server is located behing an interface
    named intf2 having security 40 on it. And finally, I have a third server
    in the inside network (security 100)

    I have to write down an access-list to allow ANY ANY between all those
    networks attached to the PIX.

    But, firstly, I need to static nat the networks.

    networks having a bigger "security" need to be "nated on itself" to get
    to another smaller security level, is that the right way of thinkig it?

    By then, I should write this

    static (intf2,external) 192.168.30.0 192.168.30.0 netmask 255.255.255.0
    static (intf2,inside) 192.168.30.0 192.168.30.0 netmask 255.255.255.0
    static (inside,external) 192.168.10.0 192.168.10.0 netmask 255.255.255.0

    Is that correct?

    Thank you to highlight a bit my way,

    /edgar
     
    =?ISO-8859-1?Q?=22Edgar=AE_du_Luxembourg=AE_=28pro, Sep 17, 2005
    #1
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Anonymous Poster
    Replies:
    0
    Views:
    10,627
    Anonymous Poster
    Apr 26, 2004
  2. Ronald de Leeuw
    Replies:
    2
    Views:
    14,266
  3. Replies:
    1
    Views:
    702
  4. Replies:
    1
    Views:
    491
    Brian V
    Sep 22, 2007
  5. Baysider

    Confused by 32 bit vs 64 bit driver info

    Baysider, Jul 19, 2008, in forum: Windows 64bit
    Replies:
    13
    Views:
    761
    Katy Pluta
    Jul 22, 2008
Loading...

Share This Page