Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Mapping incoming ports to different NAT addresses on PIX

Hello all

Can i use the extendable keyword on the pix firewall to map incoming ports to NAT private lan addresses? if yes, what is important to know before to do that. If not, how can i do that ?

Will be good if i will have any example

Thank you !

1 REPLY

Re: Mapping incoming ports to different NAT addresses on PIX

This feature is called Port Address Translation or PAT.

All port that are connecting to your outside interface IP address are forwarded, translated, to an induviual inside private IP.

example:

access-list acl_out permit tcp any interface outside eq http

access-list acl_out permit tcp any interface outside eq smtp

access-group acl_out in interface outside

static (inside,outside) tcp interface http 192.168.1.10 http netmask 255.255.255.255 0 0

static (inside,outside) tcp interface smtp 192.168.1.23 smtp netmask 255.255.255.255 0 0

Reference:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/prod_configuration_examples_list.html

sincerely

Patrick

114
Views
0
Helpful
1
Replies
CreatePlease to create content