Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

PIX out of the box question...

I just got a PIX 515. I've done some reading on it.

Is it safe for me to assume that if I do a nat on the inside interface and a global on the outside interface, along with the proper routes, that all traffic from the inside interface will go out, BUT no traffic from the outside will be able to come in???

3 REPLIES
New Member

Re: PIX out of the box question...

Yes, that is correct.

Regards,

Ron

New Member

Re: PIX out of the box question...

I've read that too. I've got a 501, with nat(inside) and global(outside). Something is preventing web browsing, ftp and icmp traffic. with netstat I can see the connections established(telnet to port 80 of external web server, ftp) but never see banners or login prompts. I've tried some with access lists and get icmp back and forth but nothing else. Even tried (http://204.202.132.19) in a browser with no luck. Anyone have ideas why? Please respond with any insight. Thanks

New Member

Re: PIX out of the box question...

global & nat are the only commands required to get traffic from inside to outside. If you have configured nat correctly then you should save the config & issue the #clear xlate command to refresh the nat translation table. hope this helps

90
Views
0
Helpful
3
Replies
CreatePlease to create content