External access config with PPPoE and Dynamic IP on outside interface
I am looking for some help with configuring a PIX 515 (6.3(1)) to allow any traffic on the outside interface (Internet) to access an FTP server on the inside interface. I have tried everything but can not seem to make this work.
Here is the setup:
- Outside interface (E0) is DSL using PPPoE and a dynamic IP assigned by the ISP and is configured using PAT on the PIX (which appears to be the only way to do this when you only have 1 IP address (no IP POOL)).
- Inside interace (E1) is 192.168.1.1 netmask 255.255.255.0
- Inside network is 192.168.1.0 netmask 255.255.255.0
- E1 is connected to a Cisco 2950 switch and has other computers connected to it.
- The FTP server IP is 192.168.1.11 netmask 255.255.255.0
- Since I have cleared the PIX, there are currently no access or translation rules in place other than the PIX defaults. If I try to create translations to the outside interface, PDM reports that it can not do so to the outside interface and since I only have 1 outside IP address, I can not create an address pool for NAT.
I am open to suggestions / help from anyone on this. I am sure that it is possible but I just can not seem to make it work.
Re: External access config with PPPoE and Dynamic IP on outside
PDM doesn't support all the features of the CLI and this may be an example. It sounds like you want to do port redirection and this document will be helpful in describing how to configure it using the CLI.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...