outside nat

Unanswered Question
Sep 18th, 2007

I have really a large concern. since days I do not find the good commands to make outside nat.

here my architecture:

------------(inside)PIX515(dmz)---------router1841-----------------------------------router1751------------(inside)PIX501(outside)-----------

(outside)

on router 1751 there are a connection on internet with a card ADSL (wic-1adsl) and the hosts of pix 501 are natted on this firewall to go on internet.

the inside network of pix 515 n/w range is 192.168.0.0/24

the dmz network of pix 515 n/w range is 192.168.2.0 /24

the network between routers is 10.10.10.0/24

the inside network of pix 501 n/w range is 41.X.X.X/29 (public address)

the outside network of pix 501 n/w range is 192.168.1.0/24

I have to authorize the 2 pix to be let pass ICMP. the hosts of the pix 501 make a ping on the hosts of the pix 515 but the hosts of the pix 515 does not arrive has to make a ping on the hosts of the pix 501.

when I puts the following commands in the pix 501:

static (inside,outside) 192.168.1.0 192.168.1.0 netmask 255.255.255.0 0 0

static (inside,outside) 47.X.X.X 192.168.1.0 netmask 255.255.255.252 0 0

the hosts of the pix 515 arrives has to make a ping on the hosts of the pix 501 but the hosts of the pix 501 can't go on Internet

I would like that you help me to find good the commndes to make in manner simultaneous of the ping between the network inside (hosts) of the pix 515 and the network inside (hosts) of the pix 501, and to allow the hosts of the pix 501 of going on Internet.

thank you

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion