|
Posted by Roark on March 31, 2005, 10:00 am
If you were Registered and logged in, you could reply and use other advanced thread options
So, a client of ours has a working Cisco pix 506 and all I'd like to do
is add one more One to One NAT (there's already 3 in there), and open
up 3 tcp ports for that mapping.
But... though I've been able to figure out the line I want to type:
static (inside, outside) 65.x.x.103 172.x.x.179 netmask 255.255.255.255
to get the NAT working, when I type it in I simply get a response to
either type "help of ?" - as if my command had bad syntax.
How/where I've entered the command is:
1) Telnet to the firewall and login
2) enable<enter>
3) static (inside, outside) 65.x.x.103 172.x.x.179 netmask
255.255.255.255
At this point we receive the "help or ?" response, and nothing is added
to the listing when we type "show static" (just the 3 already existing
NAT mappings in place).
Anyway, any help here for missing/incorrect steps would be definitely
appreciated.
thanks much
|
|
Posted by Walter Roberson on March 31, 2005, 6:22 pm
If you were Registered and logged in, you could reply and use other advanced thread options
:So, a client of ours has a working Cisco pix 506 and all I'd like to do
:is add one more One to One NAT (there's already 3 in there), and open
:up 3 tcp ports for that mapping.
A lot of the PIX bretheren hang out in comp.dcom.sys.cisco .
:But... though I've been able to figure out the line I want to type:
:static (inside, outside) 65.x.x.103 172.x.x.179 netmask 255.255.255.255
:to get the NAT working, when I type it in I simply get a response to
:either type "help of ?" - as if my command had bad syntax.
:How/where I've entered the command is:
:1) Telnet to the firewall and login
:2) enable<enter>
:3) static (inside, outside) 65.x.x.103 172.x.x.179 netmask
:255.255.255.255
2a) config terminal
Note: if you only want 3 ports active in the mapping, you might want
to use the extension of the 'static' command, such as
static (inside,outside) tcp 65.x.x.103 smtp 172.x.x.179 smtp netmask
255.255.255.255
This facility was introduced in PIX 6.2. (The 506 model was introduced
at 5.1(2) and the 506E at 5.2(7), so there is a possibility that
your release is too old. The current GD release is one of the 6.2
editions, so chances are the software is new enough for static PAT.)
--
"Mathematics? I speak it like a native." -- Spike Milligan
|
| Similar Threads | Posted | | Help with Cisco ASA 5505 config for BellSouth DSL | April 16, 2007, 2:28 pm |
| Config cisco routers such as a VPN server | July 23, 2007, 1:58 pm |
| Help with Cisco ASA 5505 config for BellSouth DSL | August 8, 2007, 5:08 pm |
| Cisco Pix 506 tftp config file to different subnet | May 26, 2006, 5:11 pm |
| (video tutorial) Config Cisco Routers for Call Manager | July 23, 2007, 2:01 pm |
| PIX DMZ Config help | November 5, 2007, 1:07 pm |
| Netscreen 5GT config | February 27, 2005, 2:56 am |
| Kerio Config | June 29, 2006, 8:13 am |
| pix 506 config change help | March 21, 2007, 8:14 am |
| firewall config | April 15, 2008, 7:17 pm |
|
XML site map