ooh errr how do you get around this then: In the PIX until the last version (6.1.1) it is not possible to use a static mapping with the same address as a global pool ?
--- Bruno Fernandes <[EMAIL PROTECTED]> wrote: > Hi !!! > > 1. > > You should use the third IP to your mail server and > make something like this > > static(dmz,outside) x.x.x.x y.y.y.y netmask > 255.255.255.255 max_conn embryonic_limit > > for mapping the private IP of the mail server wich > will "live" in the DMZ to the public IP wich will > correspond to a MX Record in your Primary DNS, then > just open a hole in your PIX to let SMTP in > > 2. In the PIX until the last version (6.1.1) it is > not possible to use a static mapping with the same > address as a global pool > > regards > BF > > > -----Original Message----- > From: kk downing [mailto:[EMAIL PROTECTED]] > Sent: Tue 19-02-2002 21:01 > To: [EMAIL PROTECTED] > Cc: > Subject: Cisco PIX DMZ with PAT ? > > Hello, > We have a very small network with three IPs from our > DSL provider. We currently have one legal IP as the > public interface on our PIX, and we use PAT for a > second address so that all machines on the private > 10.0.0.0 network can use to get out to the internet. > We just purchased a third NIC for a DMZ to put our > mail server on. We obvioulsy want to allow public > access to this machine for port 25. Is the correct > way > to do this to add a third legal IP for PAT and have > our mail server use this IP for its public access or > should we be hiding behind the public IP address on > the public interface of our PIX and just have our MX > records pointing to this IP and let PAT sort it out? > I > appreciate any feedback you could give me in this > matter. Thank you. > > __________________________________________________ > Do You Yahoo!? > Yahoo! Sports - Coverage of the 2002 Olympic Games > http://sports.yahoo.com > _______________________________________________ > Firewalls mailing list > [EMAIL PROTECTED] > http://lists.gnac.net/mailman/listinfo/firewalls > > > > __________________________________________________ Do You Yahoo!? Yahoo! Sports - Coverage of the 2002 Olympic Games http://sports.yahoo.com _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
