Bogdan, Activating NAT only gives you hole trough from higher to lower security legs of you PIX. To go the other way round you must define 'static's for the hosts you want to reach on the higher security legs and use 'conduit's to permit the traffic. Brian. > Date: Thu, 15 Apr 1999 08:46:44 +0300 > From: Bogdan Moldovan <[EMAIL PROTECTED]> > Subject: [none] > > Hy guys ... I need your help... please advise me > > > INTERNET > | > | > | > -------------------------- > | PIX | > | | > | |----------------------- > 193.230.160.128/193.230.160.224 (DMZ) > ------------------------- > | > | > | > | > Internal zone > 10.0.0.0/255.0.0.0 > > > I can make NAT form inside to dmz and I can telnet from inside to a machine > in the dmz, but I need the other way too... I can not telnet from dmz to a > machine in the inside zone.! Any ideea why? > > Thank you very much - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
