08-30-2006 04:21 PM
Gentlemen,
Two questions:
Running site to site via 506e ipsec tunneling. Can a server running on site b have a public and a private ip address? Can it be accessed locally by the private subnet and accessed from the internet by public ip's ? If so how? and can you provide access to the internet to the users in SiteB without going through the ipsec tunnel? if so how?
thank you
08-31-2006 04:59 AM
Hi Nab Khan
I feel you are in need of NAT config to be done in the PIX firewall so that the server can be access from internet world using the public ip.
It involves creating a NAT statement mapping the inside ip of the server with a public ip address.
Create access lists permitting the access to the port through which the server is being accessed from the outside world.
Apply the access lists onto the relevant interface (outside & inside or dmz depends on the interfaces you have in your router).
You can refer this link for more info on how you can do the same...
regds
08-31-2006 02:14 PM
Hi Spremkumar,
I am running a pix 506e with 6.3(5) os on it. Would it be a problem to do the same with this version?
Thanks,
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide