Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Internal firewall

hi,

we're deploying an internal firewall on our network, it's supposed to secure one of our departments. i wanted to make it so that the ip of the department that we want to secure appears the same to the "outside" network, no nat translations. we're gonna place the department on the "inside" of the firewall and the rest of the internal network on the "outside" of the firewall. how am i gonna accomplish that? thanks for the help.

5 REPLIES
New Member

Re: Internal firewall

You can use static statement to let outsiders make connections to the original IPs of your inside machines.

Thanks.

New Member

Re: Internal firewall

how? thanks

Gold

Re: Internal firewall

192.168.1.0 (outside) <--> pix <--> 192.168.2.0 (inside)

there are 2 options. first, all host from 192.168.2.0 appears to be one single ip as 192.168.1.0; second, each host from 192.168.2.0 has a unique 192.168.1.0 ip.

many to 1,

nat (inside) 1 0 0

global (outside) 1 interface

1 to 1,

static (inside,outside) 192.168.1.100 192.168.2.100 netmask 255.255.255.255

static (inside,outside) 192.168.1.101 192.168.2.101 netmask 255.255.255.255

... and the list keeps going.

New Member

Re: Internal firewall

thanks for the replies :)

Gold

Re: Internal firewall

it's good to learn that the info provided is useful.

according to cisco:

Why should I rate posts?

If you see a post that you think deserves recognition, please take a moment to rate it.

You'll be helping yourself and others to quickly identify useful content -- as determined by members. And you'll be ensuring that people who generously share their expertise are properly acknowledged. As posts are rated, the value of those ratings are accumulated as "points" and summarized on the Member Profile page and on each member's Preferences page.

228
Views
5
Helpful
5
Replies
CreatePlease login to create content