Redirecting all connections on interface

Unanswered Question
Sep 6th, 2007


In ver 6.2 of the pix os, how can I take all traffic on teh inside interface destined for port 25 and redirect it to say ip x.x.x.x?

Would it be something like

static (inside,outside) x.x.x.x 25 interface 25 netmask (not sure what to put here)

Any help would be appreciated.



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
whisperwind Thu, 09/06/2007 - 07:42

Do it as follows:

static (inside,outside) tcp x.x.x.x 25 25 netmask 0 0

access-list OUTtoIN permit tcp any host x.x.x.x eq www

access-group OUTtoIN in interface outside

dan_track Thu, 09/06/2007 - 07:55


Sorry I'm confused by the example.

I don't want a particular internal ip to be redirected I need all of them. Currently I'm using the for all internal hosts.

Any further help would be appreciated.



acomiskey Thu, 09/06/2007 - 08:10

I'm not quite sure about what you want but I think you want all smtp requests initiating from the inside to the inside interface of the pix to be redirected to x.x.x.x port 25?

If so, it would be like this and is called destination nat...

static (outside,inside) tcp interface 25 x.x.x.x 25 netmask

whisperwind Thu, 09/06/2007 - 08:16

Dan then I need you to clarify a bit what it is you are wanting as your initial example shows a single IP address and now I get the impression you want more. Which confused me as most people only have a one or two mail servers, which would only have a single public and private ip per server.


This Discussion