CISCO PIX hard question, can you answer it? TIA
- From: "pauleknight@xxxxxxxxx" <pauleknight@xxxxxxxxx>
- Date: 1 Sep 2005 15:01:34 -0700
I am not a real Cisco guy and the person I use says that what I want to
do is not possible.
I know that someone smart person out there can figure it out.
I have a PIX FW, no DMZ, 10 users inside the FW and three servers
inside the firewall.
All the servers have static nats from the outside to the inside over
specific ports.
Host1.contoso.com 66.121.13.151 nat => 192.168.1.1 port 80, 443, 3389
etc.
Host2.contoso.com 66.121.13.152 nat => 192.168.1.2 port 80, 443, 3389
etc.
Host3.contoso.com 66.121.13.153 nat => 192.168.1.3 port 80, 443, 3389
etc.
My DNS server is inside the firewall host1.contoso.com
When a user attempts to connect to Host1.contoso.com from the outside
world they get an ip address of 66.121.13.151 and can connect to the
server/service
When a user from inside the firewall attempts to
http:\\host1.contoso.com they get the ip address of 66.121.13.151 and
cannot connect to the host.
I am told that it is a Cisco "feature" to not allow this type of round
trip IP connectivity.
I want to be able to have users connect to host1.contoso.com from
inside or outside the Firewall using the same DNS sever or the same IP
address 66.121.13.151.
I am sure that this can be done, but not sure where in the Cisco UI or
PDM to make this option work.
Thanks in advance
.
- Follow-Ups:
- Re: CISCO PIX hard question, can you answer it? TIA
- From: Walter Roberson
- Re: CISCO PIX hard question, can you answer it? TIA
- From: Wil
- Re: CISCO PIX hard question, can you answer it? TIA
- Prev by Date: Re: SOHO 97 ADSL Settings
- Next by Date: Re: Multicast routing with Catalyst 4500
- Previous by thread: Connection reset !
- Next by thread: Re: CISCO PIX hard question, can you answer it? TIA
- Index(es):
Relevant Pages
|
