Forwarding traffic originating from a specific Internet host

Discussion in 'Cisco' started by elizabethkono, Oct 11, 2006.

  1. Hello

    Is there a way to tell the pix to send traffic originating from a
    certain server on the Internet to a server on my internal network over
    specific ports with return traffic going out over a specific port
    range? The traffic is being sent to my outside interface but I only
    want it forwarded if it is coming from that one server's IP address.
    elizabethkono, Oct 11, 2006
    1. Advertisements

  2. There are at least two ways:

    1) set up an access-list that permits that traffic and apply
    it to the outside interface via an access-group command

    2) use "policy-static", which is an access-list applied as a 'static'
    command; for any traffic that does not match the access-list, the
    translation will not exist and so the pix will deny the other traffic.
    Walter Roberson, Oct 11, 2006
    1. Advertisements

  3. Thank you for responding Walter.
    You're an important contributor to this group and I appreciate the
    elizabethkono, Oct 12, 2006
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.