Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
280
Views
0
Helpful
2
Replies

Opening ports to internal network

Lharrypersaud
Level 1
Level 1

‎02-23-2006 02:30 PM - edited ‎03-09-2019 02:02 PM

I have a pix 515. I have my internal network which is using a private address i.e. 192.168.2.0 and a dmz which hosts my webservers and dns servers. I need to backup the servers on the dnz using commvault but i was told that i have to create a static mapping to the commvault machine using a public address and and then open the port to the commvault machine. Is this true or is there a workaround?

Thanks for any help.

Labels:
0 Helpful
2 Replies 2

jackko
Level 7
Level 7

‎02-23-2006 03:12 PM

yes, ports need to be opened between the dmz server and the inside server for backup. however, static mapping using public ip is not necessary. you may do static mapping with private ip.

e.g.

static (inside,dmz) netmask 255.255.255.255

static (dmz,inside) netmask 255.255.255.255

access-list 101 permit tcp host host eq xxx

access-group 101 in interface dmz

0 Helpful

Lharrypersaud
Level 1
Level 1
In response to jackko

‎02-24-2006 05:41 AM

That example is very clear. I will try it a bit later.

Thanks Jackko

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents