Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

what type of Nat setup?

Hello, i'm confused as to what type of NAT I should use for my PIX515E.

Our network is at a colocation, and we deal with websites, and multimedia.

So based on that, am I right, that I shouldn't be using PAT?

I have assigned external IP's pointing to the internal IP's.

Is there anything I should be configuring so that the inside can access the outside?

I've attached a simple diagram of what the network will look like.

1 REPLY
New Member

Re: what type of Nat setup?

One to one nat should suffic, each internal server is NATed to an external address. You will need unqiue public addresses for each internal server if you intend to port forward port 80 for instance.

Inside should be able to access outside by default with a PIX. If you want to allow external host to connect to the servers you will require access rules to permit this in addtion to the static NAT.

If you don't want "public" access to these servers it would make more sense to create a site-site VPN to the co-location site if you only need internal access - this would be more secure than exposing your servers unnecessarily.

hope this helps

243
Views
0
Helpful
1
Replies
CreatePlease to create content