Static NAT

Unanswered Question
May 14th, 2008

I have the following static statement in a PIX 525:

static (outside,dmz2) 10.97.0.1 168.117.100.20 netmask 255.255.255.255

And with a sniffer on the outside interface I still see 10.97.0.1 as the SA. What is the problem?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jon Marshall Wed, 05/14/2008 - 23:15

Mark

What exactly are you expecting to happen with this statement. Just so we agree, this statement should translate any packets with a source address of 168.117.100.20 coming from the outside of your firewall to 10.97.0.1 as the packet is passed on to dmz2.

Is this what you expect and when you say you are still seeing 10.97.0.1 on the outside interface do you mean the return traffic going back out from dmz2 to the outside ?

Jon

Actions

This Discussion