Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Multiple port Mapping

Guys

I have one ip public, and I'm using PIX 515e, what I'm trying to do is multiple port mapping so I can publish multiple server which can be access from outside world in a single IP public, can I do that.

sorry 'cause a gave you all a weird case.

Thanks

Thomas

1 REPLY
Cisco Employee

Re: Multiple port Mapping

You can map different outside ports through to the same or different inside servers, using the same port or different ports. What you can't do is map the same outside port to multiple inside servers.

But let's say you have an internal web server at 10.1.1.1, an internal mail server at 10.1.1.2 and an internal FTP server at 10.1.1.3, you'd simly do this:

> static (inside,outside) tcp interface 80 10.1.1.1 80 netmask 255.255.255.255

> static (inside,outside) tcp interface 25 10.1.1.2 25 netmask 255.255.255.255

> static (inside,outside) tcp interface 21 10.1.1.3 21 netmask 255.255.255.255

Then create an access-list on the outside int that allows traffic in on those three protocols and you'll be set.

You can even change ports as tey go through like this:

> static (inside,outside) tcp interface 80 10.1.1.1 8080 netmask 255.255.255.255

But you can't have the following:

> static (inside,outside) tcp interface 80 10.1.1.1 80 netmask 255.255.255.255

> static (inside,outside) tcp interface 81 10.1.1.1 80 netmask 255.255.255.255

or even:

> static (inside,outside) tcp interface 80 10.1.1.1 80 netmask 255.255.255.255

> static (inside,outside) tcp interface 80 10.1.1.2 8080 netmask 255.255.255.255

cause then the same port is mapped through to two different ports, and the PIX won't know which one to translate it to.

83
Views
0
Helpful
1
Replies
CreatePlease login to create content