I think the asnwer is conduit permit tcp host 223.100.200.1 and then your
dmz server's IP address -rather than any....
I'm sure there's a better answer though....
Ben
-----Original Message-----
From: Rob Serfozo [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, July 12, 2000 6:23 PM
To: Firewalls LIST
Subject: PIX DMZ questions
We have a webserver set up on dmz and a server on the inside. The dmz
server needs to pass data to the inside server. I have set up the following
statements in our Pix config.
static (inside,dmz1) 192.168.1.2 223.100.200.1 netmask 255.255.255.255 0 0
conduit permit tcp host 192.168.1.2 any
The firewall seems to be working well. You can access the internet from
both the inside and dmz. Any advice.
Thanks,
Rob
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
