03-25-2002 12:49 PM - edited 02-20-2020 10:00 PM
I just got a PIX 515. I've done some reading on it.
Is it safe for me to assume that if I do a nat on the inside interface and a global on the outside interface, along with the proper routes, that all traffic from the inside interface will go out, BUT no traffic from the outside will be able to come in???
03-26-2002 09:12 PM
Yes, that is correct.
Regards,
Ron
03-28-2002 07:14 PM
I've read that too. I've got a 501, with nat(inside) and global(outside). Something is preventing web browsing, ftp and icmp traffic. with netstat I can see the connections established(telnet to port 80 of external web server, ftp) but never see banners or login prompts. I've tried some with access lists and get icmp back and forth but nothing else. Even tried (http://204.202.132.19) in a browser with no luck. Anyone have ideas why? Please respond with any insight. Thanks
04-01-2002 04:40 AM
global & nat are the only commands required to get traffic from inside to outside. If you have configured nat correctly then you should save the config & issue the #clear xlate command to refresh the nat translation table. hope this helps
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide