Hello, thanks for review my post.
This maybe an easy one, but I just could not find any good document on the net. I have three interfaces on my PIX 525, 6.3(3);
inside (192.168.x.x)
outside (67.x.x.x) and
DMZ (172.16.x.x)
I have a Pre-share site-to-site VPN tunnel setup just like the one in Cisco's PIX firewall and VPN configuration guide. My hosts in inside network have no problem communicate with remote site using their native IP addresses, (192.168.x.x <---> 10.20.x.x). My inside hosts communicate with DMZ host by NAT their address from 192.168.x.x to 172.16.x.x.
How can I create a 1-to-1 NAT for remote host to DMZ. A host in remote site need to communicate with host in DMZ, DMZ hosts will only accepte IP address in 172.16.x.x. I have seem some documents on the net relate to open port 4500 and others, but just could not find a good example that match my situation.
Can some one show me a good example (URL) or documents, I can post my configure if I have to.
Thanks.
Start Free Trial
