[nsp] NAT on PIX

Zhang, Anchi AZhang@reliant.com
Fri, 30 Aug 2002 08:56:22 -0500


This is a multi-part message in MIME format.

------_=_NextPart_001_01C2502D.0636E496
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

Your NAT address pool seems a little to big.  What is your edge router's =
Ethernet's IP address?  What is your active PIX outside Ethernet's IP =
address?  What is your standby PIX outside Ethernet's IP address?
=20
Anchi
=20
-----Original Message-----
From: Tejal Shah [mailto:tejal.shah@surat.iqara.net]
Sent: Friday, August 30, 2002 7:10 AM
To: cisco-nsp@puck.nether.net
Subject: [nsp] NAT on PIX


   Hi all,
=20
                  I have PIX 525 with versin 6.0 with six interface ( =
runnning in failover mode) .
I want to start NAT on my one of interface so the all client on that =
interface can go no internet.
=20
I tried that with command=20
=20
nat (abc) 1 0 0
=20
global (outside) 1 203.157.94.2-203.157.94.254 netmask 255.255.255.0
=20
The default gateway of the PIX pointing to router and i have addes one =
route=20
for network 203.157.94.0 /24 to the outside interface of firewall.
=20
But it is not working.
=20
what i m missing here ?
=20
=20
with regards
Tejal
=20
=20
=20
=20
=20

------_=_NextPart_001_01C2502D.0636E496
Content-Type: text/html;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3Diso-8859-1">


<META content=3D"MSHTML 5.50.4807.2300" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2><SPAN class=3D779055313-30082002>Your =
NAT address=20
pool seems a little to big.&nbsp; </SPAN></FONT><FONT face=3DArial =
size=3D2><SPAN=20
class=3D779055313-30082002>What is your edge router's Ethernet's IP =
address?&nbsp;=20
What is your active PIX outside Ethernet's IP address?&nbsp; What is =
your=20
standby PIX outside Ethernet's IP address?</SPAN></FONT></DIV>
<DIV><FONT face=3DArial size=3D2><SPAN=20
class=3D779055313-30082002></SPAN></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2><SPAN=20
class=3D779055313-30082002>Anchi</SPAN></FONT></DIV>
<DIV><FONT face=3DArial size=3D2><SPAN=20
class=3D779055313-30082002></SPAN></FONT>&nbsp;</DIV>
<DIV class=3DOutlookMessageHeader dir=3Dltr align=3Dleft><FONT =
face=3DTahoma=20
size=3D2>-----Original Message-----<BR><B>From:</B> Tejal Shah=20
[mailto:tejal.shah@surat.iqara.net]<BR><B>Sent:</B> Friday, August 30, =
2002 7:10=20
AM<BR><B>To:</B> cisco-nsp@puck.nether.net<BR><B>Subject:</B> [nsp] NAT =
on=20
PIX<BR><BR></FONT></DIV>
<DIV><FONT face=3DArial size=3D2>&nbsp;&nbsp;&nbsp;Hi all,</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial=20
size=3D2>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=20
I have PIX 525 with versin 6.0 with six interface ( runnning in failover =
mode)=20
.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>I want to start NAT on my one of =
interface so the=20
all client on that interface can go no internet.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>I tried that with command </FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>nat (abc)&nbsp;1 0 0</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>global (outside) 1 =
203.157.94.2-203.157.94.254=20
netmask 255.255.255.0</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>The default gateway of the PIX pointing =
to router=20
and i have addes one route </FONT></DIV>
<DIV><FONT face=3DArial size=3D2>for network 203.157.94.0 /24 to the =
outside=20
interface of firewall.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>But it is not working.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>what i m missing here ?</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>with regards</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>Tejal</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV></BODY></HTML>

------_=_NextPart_001_01C2502D.0636E496--