From: Wade Edwards (wade.edwards@xxxxxxxxxxxxxxxxxxx)
Date: Tue Nov 13 2001 - 17:01:08 GMT-3
I think that the pix should know what IP address to use on the outbound
traffic because it should have that flow in its NAT translation table.
So as long as the user initiated the connection from the outside
interface to one of the IP addresses the pix should be able to
distinguish between the flows and send traffic back using the correct IP
address.
I know that on the router side this is possible but I think it should
work for the pix as well.
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft
/122t/122t4/ftnatrt.htm
Watch the wrap.
There might be other references. This is just a quick on I found.
L8r.
-----Original Message-----
From: Mark Newcomb [mailto:MNewcomb@auroracg.com]
Sent: Tuesday, November 13, 2001 1:28 PM
To: 'Dean, Justin'; ccielab@groupstudy.com
Subject: RE: Pix Nat/Pat question - Multiple outside ip's to 1 inside ip
a ddress
In some versions of the Pix (I know it does this on 4.2) you can
actually enter 2 statics without any errors showing. The problem is
that when the host replies to something, the PIX will not know the
address to which it needs to be translated.
In other words, no.
-----Original Message-----
From: Dean, Justin [mailto:Justin.Dean@nrtinc.com]
Sent: Tuesday, November 13, 2001 11:14 AM
To: 'ccielab@groupstudy.com'
Subject: OT: Pix Nat/Pat question - Multiple outside ip's to 1 inside ip
a ddress
Does anyone know if it is possible to make a static nat for a single DMZ
host to be represented by 2 different outside ip addresses. Reason being
is
that we need to do a DNS migration from 1 isp to another and we don't
want
to lose any web traffic to a certain server. Thanks for any insight on
this.
This archive was generated by hypermail 2.1.4 : Fri Jun 21 2002 - 06:45:14 GMT-3