From: mani poopal (mani_ccie@yahoo.com)
Date: Sat Dec 17 2005 - 11:19:12 GMT-3
pc_A10.10.1.10/24----------------eo(10.10.1.1)PIX-----------------pc_B10.20.1.10
e1(10.20.1.1)
Hi Guys,
I have a special requirment where pc_A must talk to pc_B without any address translation. I made pc_B talk to pc_A but giving nat (inside) 0 10.20.1.0 255.255.255.0 command. I was able to ping from 10.20.1.10 to 10.10.1.10 and not the otherway around. I configred proper access-lists on the pix and applied for communication and proper default gateway's for a pc. The addresses we are talking here are private and nothing about internet ip.s.
So my question, how can be make inbound connection(from 10.10.1.10 to 10.20.1.10) without andy address translation and without giving any static/conduit commands. When 10.10.1.10 communicates with 10.20.1.10, 10.20.1.10 should see the packets coming from 10.10.1.10(NO ADDRESS TRANSLATION is allowed). I couldn't find the desired config in the cisco.com.
I DONT WANT TO USE static (inside, outside) 10.20.1.0 10.20.1.0 command
ps:guys eo is outside, e1 is inside and we are talking about access from low security interface to high security interface.
thanks
Mani
B.ENG,MCSE,CCNP,CCSP,CCIE#14645
(416)431 9929
MANI_CCIE@YAHOO.COM
This archive was generated by hypermail 2.1.4 : Mon Jan 09 2006 - 07:07:51 GMT-3