RE: PIX problem

Mon, 19 Mar 2001 13:10:36 -0800 

I e-mailed Sam, and the group I thought, but this seems to be solved by
the alias command. Our users can reach things in the DMZ by it's
registered ip  from inside the network. If I have a web site in a dmz
and I want to go to it and its IP addr is 66.22.33.44 and that is the
way DNS sees it, then I can use the alias command and my users can then
go to www.xyz.com. They can also connect to whatever port deemed by the
external address.

Maybe I am reading the post wrong so please correct me if I am. Example:
alias (inside) 208.x.y.z 192.168.a.b 255.255.255.255
as long as I have a static to match this work great. The static has to
apply to the DMZ or inside pc/server IP.

regards,
Steve

-----Original Message-----
From: Vijay Ramcharan [mailto:[EMAIL PROTECTED]]
Sent: Monday, March 19, 2001 2:37 PM
To: 'Sam'; [EMAIL PROTECTED]
Subject: RE: PIX problem


Sam, Cisco documentation suggests that there is no workaround for this.
I've had the same problem.  From what I read on CCO, for a machine with
a
static global IP address mapped to a LAN address, LAN users use the
local IP
while outside users use the global IP.  If someone has a config where
they
can use the Global address inside the LAN, I'd like to see how it was
done.

Vijay Ramcharan

-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Sam
Sent: Monday, March 19, 2001 1:28 PM
To: [EMAIL PROTECTED]
Subject: PIX problem


Hello Group,
I am having trouble figuring out a small issue with a PIX firewall.  It
is
running ver 4.4(5).
After entering the approriate static and conduit (WWW) commands, I tried
accessing the host from our internal network using the external address
and
I was not able to.  I then tested from a machine that is outside our
firewall and was able to access the host without any problem.

Is their a command that I am missing in order to let users on our
internal
network access hosts using the external IP addresses?
Thanks in advance,
Sam



_________________________________
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_________________________________
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Reply via email to