Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
243
Views
0
Helpful
2
Replies

alias command

a.cristofari
Level 1
Level 1

‎03-15-2006 03:26 AM - edited ‎03-09-2019 02:16 PM

Hi there, I have an issue I am trying to figure out.

I have a PIX 506E.

I have an inside network of 10.25.0.0/16

I have some static 1-to-1 translations setup for a webserver that is behind the pix, and I have rules setup to open port 80.

64.4.200.125 maps to 10.25.200.125

From the outside world, you can access http at 64.4.200.125

From the inside server, you can access http at 10.25.200.125

The problem is, from the inside, when you try to access the DNS name, which of course maps to 64.4.200.125, the system fails.

I used in old version pix os alias command and worked.

Now i use new pix os 6.3.3 and alias command is not supported.

what do i do now?

best regard

Labels:
0 Helpful
2 Replies 2

davidecooper1967
Level 1
Level 1

‎03-15-2006 05:05 AM

If you have an internal DNS server you can fix it there so that it resolves correctly to the inside address. Another method for PIX 6.2 and later:

static (dmz,inside) translated_IP real_ip dns

IE

static (dmz,inside) 209.165.202.128 172.16.1.5 netmask 255.255.255.255 dns

0 Helpful

a.cristofari
Level 1
Level 1
In response to davidecooper1967

‎03-15-2006 05:52 AM

Thank for your reply

but i wrong to write the question

sorry,

i have to migrate from version 5 to version 6.3.3 os pix and the alias command is not supported.

I don't know that is the new command used now.

Thank a lot

IE

alias (inside) 180.17.44.11 10.17.44.11 255.255.255.255

alias (inside) 180.17.44.12 10.17.44.12 255.255.255.255

0 Helpful
Customers Also Viewed These Support Documents