my question : in the pix dmz interface ,It have two hosts,using the ip address:22.214.171.124 for service,but the ip is virtual ,the real hosts ip are 126.96.36.199,188.8.131.52;clients access the 184.108.40.206 ,and the active host(example 220.127.116.11) reply ,the source ip address is 18.104.22.168 of receive packets by the clents,not 22.214.171.124.
For I want use command static() achieve NAT: interface dmz 126.96.36.199 to inside 10.10.10.40 .The clients access the ip :188.8.131.52 would access 10.10.10.40
,and return the source ip address 184.108.40.206 can't be translated ,the access is fault .
I try use command :static (dmz,inside) 10.10.10.40 220.127.116.11 netmask 255.255.255.255 ,just complete one way ip address translate,and the other way :the ip address 18.104.22.168 in the return packet not be translated.
I think if use dynamic nat achieve more than one ip address in the interface dmz translated one (just) ip address in the inside interface .
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...