cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
265
Views
0
Helpful
2
Replies

NAT / PAT question

pcguru1964
Level 1
Level 1

I have two webservers on the inside interface. Currently one server is answering on port 80 and 443 to a public address 255.255.255.252 mask. I need to have the current server remain answering port 80. I need to have the other answer on 443. Is it possible to have the one public address to route each particular port to each particular server? I also have another public range on a 255.255.255.248 mask that is assigned to the DMZ. I cannot move either server to the DMZ because they need to remain in communication with each other on the local net since they are Novell in the same tree, unless someone has a suggestion. Forgive me for I am new to the PIX scene.

2 Replies 2

zekenshin
Level 1
Level 1

Hi,

I don't know if that a solution but have you try this :

two command static to redirect traffic (static (inside,outside) tcp ip 80 ip 80 and static (inside,outside) tcp ip 443 ip 443).

Good luck

Kenshin

thanks for the reply. i already have these rules setup for the current Web Server that resides on the inside interface. i need to be able to make "PublicWeb" answer to port 80 at the public address and make the "SecureWeb" answer on port 443. for example. if someone types http://domain.com the traffic would be forwarded to the "PublicWeb" server residing on the LAN. If someone types https://domain.com the traffic would be forwarded to the "SecureWeb" server also residing on the LAN. here are my current rules.

static (inside,outside) tcp interface smtp PublicWeb smtp dns netmask 255.255.255.255 0 0

static (inside,outside) tcp interface www PublicWeb www dns netmask 255.255.255.255 0 0

static (inside,outside) tcp interface https PublicWeb https dns netmask 255.255.255.255 0 0

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: