Accessing Server using REAL IP from PIX INSIDE

Unanswered Question
Dec 10th, 2007

Hi,

I have PIX 515E firewall and one webserver hosted INSIDE the firewall. This server is static mapped with the one of the REAL IP address in firewall for outside access.

Now my application is hard coded with this REAL IP address, so when someone from the INSIDE the firewall try to access this application it is not working ?

Is there any solution for such case ?

Regards,

Mehul

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
JORGE RODRIGUEZ Mon, 12/10/2007 - 05:23

Mehul, there may be couple of solutions, if your pix is running 7.x or above you may try using hairpining, if not you may try dns doctoring see link bellow.

static (inside,inside) public.ip private.ip netmask 255.255.255.255

same-security-traffic permit intra-interface

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00807968d1.shtml

HTH

Jorge

rate any helpful post if it helps

techteamtechnologies Mon, 12/10/2007 - 22:20

Hi,

Thanks for the link. But my problem is different.

My app. is hard coded in such a way that it only opens with the REAL IP address and not the private IP address of the server. So when user types the link it sould resolve the REAL IP and then access the app.

So users INSIDE the firewall can't access the app. because the server is hosted in same LAN and they try to access the REAL IP from inside only ?

Can you help me with this ?

Regards,

Mehul

Actions

This Discussion