One way you can do it is by setting up multiple private ip addresses on the web server, and then using static to map them to registered ip adresses at the pix.
You can use multiple static commands (one for each ip), or you can use static with a subnet, but for this to work, you'll have to plan the private ip addresses given to the web server so that they'll match.
This is not the only way - there are other possible solutions.
But what is the goal here - what are you trying to do?
You can play with DNS records , and "host headers" at the web server, you can host multiple domains on a single server using single ip address.
I am hosting a webservice for my client for a temporary period. My aim is to only allow the range of addreses (x.x.x.96 255.255.255.224) which are his nat pool IP's to access the http port exposed at my end. This hhtp server is right now statically mapped to allow access to "any" by
We can very well take care of this problem by allowing only a particular host to access this http service but what could be done if you need to allow the access for the range of ip's in above case??
Using static command per IP is really a tedious thing to do if there are many IP's which needs to be take care, isn't there any better solution where we can only expose the http access only to a range of IP's or a network address.
Secondly, can you please elaborate more on th solution you propose??
But...to tell you the fact I had tried the similar couple of days back....obviously the rule logically says so....but I think it needed a "write mem" and a "Power Cycle" to PIX after it was written....;-)
Anyways, thanks a million...my problems seems to be solved.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :