×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

pix port forwarding

Unanswered Question
Feb 25th, 2004
User Badges:

Hello,


I have been having a little trouble getting these few commands to take.


I need to have to inside addresses mapped to allow to sessions of pcanywhere to go through. One to the server, and one for a pc that is used by an outside company


Here is what I was trying to get to work



static (inside,outside) tcp 5633 xxx.xxx.xxx.xxx 5633 192.168.1.2 netmask 255.255.255.255 0

0


static (inside,outside) udp 5634 xxx.xxx.xxx.xxx 5634 192.168.1.2 netmask 255.255.255.255 0

0


static (inside,outside) tcp 5631 xxx.xxx.xxx.xxx 5631 192.168.1.15 netmask 255.255.255.255 0

0

static (inside,outside) udp 5632 xxx.xxx.xxx.xxx 5632 192.168.1.15 netmask 255.255.255.255 0

0


Now, when ever I try to enter these in, I get maximum number of connections should lie between 0 and 65535. I thought I specified that already


We have it working if we just want to get into the server using this


static (inside,outside) xxx.xxx.xxx.xxx 192.168.1.2 netmask 255.255.255.255 0 0


What am I doing wrong??


Any help wil be appreciated


Thanks


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
aacole Wed, 02/25/2004 - 09:00
User Badges:
  • Bronze, 100 points or more

The command syntax should be:


static (inside,outside) tcp xxx.xxx.xxx.xxx 5633 192.168.1.2 5633 netmask 255.255.255.255 0 0


static (inside,outside) tcp xxx.xxx.xxx.xxx 5631 192.168.1.15 5631 netmask 255.255.255.255 0 0


So when you connect to xxx.xxx.xxx.xxx 5633 you get re-directed to 192.168.1.2 5633 and 192.168.1.15 for connections to port 5631.



Anonymous (not verified) Thu, 03/11/2004 - 12:21
User Badges:

Can this be done when the outside address us configured for dynamic addressing? If so can you give me the syntax.


Thanks

Shawna

Actions

This Discussion