From: Sayeed Kachroo (sayeedk@hotmail.com)
Date: Fri Feb 03 2006 - 02:39:16 GMT-3
Static (dmz,outside) tcp 69.31.3.2 HTTP 69.31.3.2 8080 is all you need.
HTH
--------------------------------------------------------------------
From: Niche <jackyliu419@gmail.com>
Reply-To: Niche <jackyliu419@gmail.com>
To: supernet <supernet@comcast.net>
CC: Cisco certification <ccielab@groupstudy.com>,
cisco@groupstudy.com
Subject: Re: PIX question
Date: Fri, 3 Feb 2006 12:36:08 +0800
>Hi there,
>
>Remove "Static (dmz,outside) 69.31.3.2 69.31.3.2 netmask
255.255.255.255"
>
>Then input "Static (dmz,outside) tcp 69.31.3.2 HTTP 69.31.3.2 8080
>netmask 255.255.255.255" first,
>
>finally, input "Static (dmz,outside) 69.31.3.2 69.31.3.2 netmask
>255.255.255.255" again.
>
>See if that's work, I don't have a PIX at home so can't verify for
you.
>
>Best Regards,
>Jacky
>
>On 2/3/06, supernet <supernet@comcast.net> wrote:
> > We have a HTTP/FTP server in DMZ. The following configuration
works fine.
> >
> > Static (dmz,outside) 69.31.3.2 69.31.3.2 netmask 255.255.255.255
> >
> > We now have a requirement to have PIX redirect incoming HTTP
traffic to port
> > 8080 so I tried to add a command
> >
> > Static (dmz,outside) tcp 69.31.3.2 HTTP 69.31.3.2 8080 netmask
> > 255.255.255.255
> >
> > However, the PIX gave an error message "duplicate of existing
static". Why
> > is that? Any advice? By the way, we are not using NAT. Thanks.
Yoshi
> >
> >
_______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
>
>_______________________________________________________________________
>Subscription information may be found at:
>http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Wed Mar 01 2006 - 11:28:17 GMT-3