Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
212
Views
0
Helpful
1
Replies

PIX520

ishwar
Level 1
Level 1

‎11-26-2003 10:19 PM - edited ‎03-09-2019 05:40 AM

I am using Pix 520 and using only two interface out of six(outside and inside).Without NAT

Now We have to add one more interface with NAT.

I have tried to configure the PIX but it is not working.

Please have a look my configuration

!

access-list 111 permit ip any any

!

!

ip address outside 202.52.251.145 255.255.255.0

ip address inside 202.52.255.50 255.255.255.0

ip address intf2 192.168.10.75 255.255.255.0

!

!

global (outside) 1 interface

nat (inside) 0 0.0.0.0 0.0.0.0 0 0

nat (intf2) 1 0.0.0.0 0.0.0.0 0 0

static (inside,intf2) 192.168.10.73 202.52.255.47 netmask 255.255.255.255 0 0

access-group 111 in interface intf2

!

!

route outside 0.0.0.0 0.0.0.0 202.52.251.1 1

I am in confuse how to configure one interface with nat(intf2) and other one without nat(inside).

And all important servers like dns,ftp,mail etc reside in inside.

Please help me..

Should I add more command ??

Ishwar

Labels:
0 Helpful
1 Reply 1

pradeepde
Level 5
Level 5

‎12-02-2003 11:22 AM

The following URL should make it clearer for you,

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/config/mngacl.htm#1069973

0 Helpful
Customers Also Viewed These Support Documents