From: Walker, Todd (todd.walker@seurat.com)
Date: Fri Nov 15 2002 - 11:21:28 GMT-3
I'm curious how that worked. From standard use, you appear to have the IP addresses in reverse order. The static usually goes:
static (inside,outside) <public ip> <private ip>
To conserve IP's you can just do a 'port static' using the PIX's interface address and send DNS lookups to your server. I have a DNS server working with this PIX line:
static (inside,outside) udp <pix outside int ip> domain <dns server inside ip> domain netmask 255.255.255.255
This is on 6.1(2). I think this is what you meant. However if your static is working, the PIX can now NAT source address coming in from outside, and this may be what is occurring/what you intended?
Todd Walker
-----Original Message-----
From: djtowns@webtribe.net [mailto:djtowns@webtribe.net]
Sent: Friday, November 15, 2002 5:36 AM
To: ccielab@groupstudy.com
Subject: DNS Lookups using PIX 6.2.2
Has anybody had any experience on configuring a PIX to NAT DNS
queries from an outside DNS server to an inside range.
I can get this working using static :
static (inside,outside) 10.1.1.0 204.12.8.0 dns netmask
255.255.255.0 0 0
however I need to get this working using the Global and NAT
commands to save on addressing space, has anyone had any success
with this ???
Thanks
Dyls
This archive was generated by hypermail 2.1.4 : Tue Dec 03 2002 - 07:23:01 GMT-3