Port Address Translation w/ PIX 515E

Unanswered Question
May 21st, 2007
User Badges:

Does anyone know if it is possible for a PIX 515E to do simple Port Address Translation (PAT)? Also, how many concurrent connections that would sustain?


Thanks,

Johnny

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
acomiskey Mon, 05/21/2007 - 09:36
User Badges:
  • Green, 3000 points or more

global (outside) 1 interface

nat (inside) 1 0 0

vitripat Mon, 05/21/2007 - 09:37
User Badges:
  • Gold, 750 points or more

Yes its possible to do PAT on PIX. Here is an example-


nat (inside) 1 0 0

global (outside) 1 interface


Above commands will simply PAT all the inside network when going outbound to the IP address on the outside interface of PIX.


Here is a link which will help you understand hot NAT/PAT is configured and works on PIX-


http://www.cisco.com/en/US/docs/security/pix/pix63/configuration/guide/bafwcfg.html#wp1112345


Hope this helps.


Regards,

Vibhor.

laurent.geyer Mon, 05/21/2007 - 11:48
User Badges:

Is this what you're talking about?


Translate a.a.a.a TCP/80 to b.b.b.b TCP/8080


If so, you would accomplish it as follows:


static (, ) tcp a.a.a.a 80 b.b.b.b 8080 netmask 255.255.255.255


Actions

This Discussion