Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

firewall

How would I enable traffic for both ways on a cisco pix firewall ? basically for http access, I gather this needs to be enabled both ways ?

2 REPLIES

Re: firewall

Hi

can you revert whether you are trying to host any webservcies in ur local lan and want to give access to that server ?

or simple http access from the local lan ?

on both cases u need to configure NAT which is very much vital.

but in the first case u need to map the server local ip to the public ip with the port numbers in which you are going to host the http service.

also u need to create an access list permitting the outside world to access the server ip on that particular port in which ur hosting the http service..

i think this link will help u out to choose the best case scenario which fits into ur reqirement..

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/prod_configuration_examples_list.html

regds

Gold

Re: firewall

assuming you are referring to configuring inbound http access, such as users from internet accessing your webserver.

e.g.

webserver <--> pix <--> www

if my assumption is right, then it depends on the number of public ip you've got.

with one public ip,

static (inside,outside) tcp interface 80 80 netmask 255.255.255.255

access-list inbound permit tcp any interface outside eq 80

access-group inbound in interface outside

with multiple public ips,

static (inside,outside) netmask 255.255.255.255

access-list inbound permit tcp any host eq 80

access-group inbound in interface outside

106
Views
0
Helpful
2
Replies