|
Home > Archive > alt.certification.cisco > February 2004 > RE Multiple NAT addresses to map with a Cisco Pix 501 Firewall
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
RE Multiple NAT addresses to map with a Cisco Pix 501 Firewall
|
|
| Morpheous 2004-02-18, 5:25 am |
| static (inside,outside) (outside IP) (inside IP) netmask 255.255.255.255
Example:
static (inside,outside) x.x.x.x x.x.x.x netmask 255.255.255.255
Now you have a static nat to a specific device on the inside of your PIX. You can now write an Access List to specify what services to allow to this device.
| |
| derek b 2004-02-18, 11:25 am |
| Sorry to be so basic about this, but I am new to Firewall
configuration.
So basically I can mirror the functionality of our current router to
be performed by the pix 501. Thus I would not need to buy another
router, and can just simply bridge the DSL router and let the Pix
handle it?
Beyond that, is there somewhere that you could recommend finding
default Access Lists for such things as VPN servers or Terminal
Services? We aren't a high threat situation, but also while we are
doing this we would obviously like to make ourselves as secure as
possible.
Thanks again for you help.
"Morpheous" <m@matrix.com> wrote in message news:<CjGYb.49692$yu6.12428@fe14.usenetserver.com>...
> static (inside,outside) (outside IP) (inside IP) netmask 255.255.255.255
>
> Example:
>
> static (inside,outside) x.x.x.x x.x.x.x netmask 255.255.255.255
>
> Now you have a static nat to a specific device on the inside of your PIX. You can now write an Access List to specify what services to allow to this device.
|
|
|
|
|