From: Michael Popovich (michael625@cox.net)
Date: Sat May 31 2003 - 17:27:55 GMT-3
version 6.2(2) or 6.3(1) is fine. I have tried this on both and it doesn't work.
That documentation does not explain the kind of nat that I posted below. Assume using a PIX firewall between two networks that you want to hide both ways but do it in an overload/PAT fashion.
I don't want to do static translations from inside to outside or outside to inside. I want to PAT to 1 address both ways on the PIX. I can do it from nat (inside) to global (outside) but I can't seem to do it nat (outside) to global (inside) in an overload fashion.
MP
>
> From: "Jonathan V Hays" <jhays@jtan.com>
> Date: 2003/05/31 Sat AM 09:33:47 EDT
> To: <ccielab@groupstudy.com>
> CC: "'Michael Popovich'" <michael625@cox.net>
> Subject: RE: PIX NAT??
>
> Just as a general rule, when you post on the PIX it's a good idea to let
> folks know what version of software you're running. PIX capabilities
> change and improve with every release.
>
> This section of the version 6.2 PIX documentation explains PAT and NAT
> pretty clearly.
> http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_62/co
> nfig/bafwcfg.htm
>
> What are you trying to accomplish?
>
> > -----Original Message-----
> > From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On
> > Behalf Of Michael Popovich
> > Sent: Saturday, May 31, 2003 4:20 AM
> > To: ccielab@groupstudy.com
> > Subject: PIX NAT??
> >
> >
> > Can you NAT from the Outside interface to the Inside interface?
> >
> > I have:
> >
> > nat (outside) 1 0.0.0.0 0.0.0.0
> > global (inside) 1 interface
> >
> > This doesn't seem to work for me, now I am wondering if it is
> > possible.
> >
> > MP
This archive was generated by hypermail 2.1.4 : Mon Jun 02 2003 - 15:13:51 GMT-3