Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

New server added

A new server is to be added to our dmz and mapped to an ip address

Now I apply static and access-lists commands .... Dont I have to enable them using the access-group command

New server@DMZ is 172.16.1.2

Mapped to 192.168.1.1

therefore

pix(conf)#static (dmz,outside) 192.168.1.1 172.16.1.2 netmask 255.255.255.255

pix(conf)#access-list aclin line 6 permit tcp any host 192.168.1.1 eq www

I should also configure the access-group command like the one below

pix(conf)#access-group aclin in interface outside

2 REPLIES
Gold

Re: New server added

Yes that's correct you need to bind the outside access list to the outside interface with: access-group aclin in interface outside.

Save with: write mem and also issue: clear xlate

Hope this helps.

Jay

New Member

Re: New server added

And if I am using the console and want to verify that everything is working properly.

Then which command should I use?

1. Show xlate

2. Show conn

3. ping dmz 172.16.1.2 but this is of no use since I am not outside

Please advice

Thanks in advance

101
Views
4
Helpful
2
Replies
CreatePlease to create content