|
|
| darthfeces 2002-12-11, 11:35 am |
| pix 501 dhcp and pat on outside interface.
how do i open a hole and or a accesslist/conduit to an inside host if the
outside ip is random/unknown.
i'm being dense here ? | |
| The Reamer 2002-12-11, 4:13 pm |
| Not an expert on the subject, but I would open a port like:
conduit permit tcp any any eq bootps
Of course I would change the second any to reflect the DHCP server.
HTH,
Reamer
BTW, Let me know if this works for you. | |
| Widgewaam 2002-12-13, 8:57 am |
| Wouldn't that allow only the dhcp server inside? That's not going to allow the outside host that's getting dynamic ip's. | |
| The Reamer 2002-12-14, 10:46 am |
| Maybe I read the question wrong, so darth can you clear this up a little? Is this a host on the inside of the pix trying to get an address from an outside dhcp server; or is it a host on the outside trying to reach a server on the inside?
Reamer | |
| darthfeces 2002-12-14, 2:34 pm |
| i'll come clean ...
it's a cable connection
dhcp address being pat'd
my boss wanted to open certain udp ports so he could do playstation2 online gaming. !!!!!!
i drew a blank on how i might open ports with a global pat address to an inside host.
since the dhcp address is random.
i came up with
static (inside,outside) interface 192.168.1.2 netmask 255.255.255.255 0 0
and
conduit permit udp any host 192.168.1.2 range 10000 10100 (whatever's needed) | |
| MadChef 2002-12-15, 6:41 am |
| So you used the inside address as the destination and it worked? That's not as I would have expected, but hey, I've never tried to do that before.
Darth, do you not find it funny that we were both so challanged by your boss's desire to play PS2 online?
hah.
MC | |
| darthfeces 2002-12-15, 2:10 pm |
| that's what i asked him to try ....
don't know if it worked yet.
what else whould you suggest ?
funny huh another guy i worked with wanted to know about xbox games.
check out apc currents mag this month that's him. | |
|
|
|
|