Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
280
Views
0
Helpful
2
Replies

pix 506e and external public ip's

nabkhan01
Level 1
Level 1

‎08-30-2006 04:21 PM

Gentlemen,

Two questions:

Running site to site via 506e ipsec tunneling. Can a server running on site b have a public and a private ip address? Can it be accessed locally by the private subnet and accessed from the internet by public ip's ? If so how? and can you provide access to the internet to the users in SiteB without going through the ipsec tunnel? if so how?

thank you

Labels:
0 Helpful
2 Replies 2

spremkumar
Level 9
Level 9

‎08-31-2006 04:59 AM

Hi Nab Khan

I feel you are in need of NAT config to be done in the PIX firewall so that the server can be access from internet world using the public ip.

It involves creating a NAT statement mapping the inside ip of the server with a public ip address.

Create access lists permitting the access to the port through which the server is being accessed from the outside world.

Apply the access lists onto the relevant interface (outside & inside or dmz depends on the interfaces you have in your router).

You can refer this link for more info on how you can do the same...

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00806745b8.shtml

regds

0 Helpful

nabkhan01
Level 1
Level 1
In response to spremkumar

‎08-31-2006 02:14 PM

Hi Spremkumar,

I am running a pix 506e with 6.3(5) os on it. Would it be a problem to do the same with this version?

Thanks,

0 Helpful
Customers Also Viewed These Support Documents