Port Translation in PIX 7.2

Unanswered Question
Oct 22nd, 2007

I have a server with an applications running in the port 9080 behind a PIX, some users from Internet that are using other firewalls are not able to reach the port 9080 due restrictions. I want to know if my PIX firewall is able to translate a 80 port lookup to 9080 that is served by the server?


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
Patrick Iseli Mon, 10/22/2007 - 20:22

Yes this is possible.

For Port address translation you can use :

1.) SRC Port 9080 to DST port 9080

2.) Or you can also use the SRC Port 80 to DST Port 9080

Example of option 2:

access-list acl_outside permit tcp any host PublicIP eq http

access-group acl_outside in interface outside

static (inside,outside) tcp PublicIP http IntenalIP 9080 netmask

Replace the PublicIP and the InternalIP by the RealIP Address.




This Discussion