[c-nsp] Cisco Pix. Global command
John Ramz
sforcejr at yahoo.com
Thu Oct 2 23:51:35 EDT 2008
OS 7
I only have 2 Public Ip addresses:
2.1.1.2: In the ROuter
2.1.1.3
I am configuring this firewall very basic:
Ethernet0: outside Ip address: 2.1.1.3
Ethernet1: inside Ip address: 192.168.254.253
global (outside) 1 2.1.1.3
nat (inside) 1 192.168.254.0 255.255.255.0 0 0
route external 0.0.0.0 0.0.0.0 2.1.1.2 1
access-list outbound permit tcp 192.168.254.0 255.255.255.0 any eq 80
access-group outbound in interface inside
You might point out something else if you think it is needed. Since I only have 2 Public Ip addresses, can I use the outside interface ip address for the global command?
Thanks
John
More information about the cisco-nsp
mailing list