Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Returns to client from different IP

I am having trouble understanding why outside udp connections coming in on IP go back out the PIX on

My PIX has a /248 mask on the outside interface so it has the range of say to exposed to the outside

These are the commands dealing with the udp traffic:

access-list fromoutside permit udp any host eq 5678

static (inside,outside) udp 5678 5678 netmask

Can anyone nudge me in the right direction?

New Member

Re: Returns to client from different IP

Is your outside interface IP, or an IP used in a NAT? Try using a static NAT instead of a static PAT:

static (inside,outside)

New Member

Re: Returns to client from different IP

Yes is one of the IP's on the outside interface of the PIX. Unfortunately I cannot use static NAT because once traffic passes the PIX and is in the DMZ some of it (port 25) will go to the Microsoft firewall from there and some of it (the udp ports) will go to a different firewall from there.

I don't understand my nat lines, they are:

global (outside) 1 interface


nat (inside) 1 0 0