Advertisement

04.22.2008 at 08:12PM PDT, ID: 23345357
[x]
Attachment Details
[x]
The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

  • The Grade of the Solution
  • The Zone Rank of the Expert Providing the Solution
  • The Number of Author and Expert Comments
  • The Number of Experts Contributing
  • The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!
9.2

How to configure multiple public IP address

Asked by cwsoft05 in Cisco PIX Firewall

Tags: , , ,

We have 5 IPS from our cable provider, Charter.

Say x.x.110.249-253.

We want the first IP, x.x.110.249, to service basically all workstations in the network
IP 2, x.x.110,250, would be for a Citrix Server
IP 3, x.x.110.251, would be for a computer that accesses a FTP server at our other ISP, which provides oru DSL connection.

What we want is to isolate the workstation that accesses the FTP server via port 21 outgoing to the x.x.110.251 IP address and make it so when the requests come from this workstation, the ISP sees the IP address of the source workstation as x.x.110.251.  Currently, it shows at the ISP as our main IP address as we have not configured the other addressess.

The internal address of our Cisco ASA 55xx is 172.16.0.3.  Assuming our ftp client workstation has an IP address of 172.16.2.48, what would we be using as the gateway address in the workstation IP configuration.

The problem we have currently, is for some reason our ISP is saying either our main cable public IP address or our main DSL public IP address is doing attempting invalid logins to our FTP site they host.  We have check our application software on ftp client workstation process and it is working fine.  We have checked any other workstations that do FTP traffic to our FTP site and see no problems and no one is complaining.  However, the invalid login attempts continue and trigger their account disabling settings to our public IP addresses for our cable and DSL connection.

We are at a loss to determine where the traffic is coming from.  Thus, in the above situation, we are trying to isolate our FTP client workstation process onto one of our unused, available external cable public IP address, but in such a way so that other address appears as the source address to our FTP site hosted by the IP.  At least, then only one computer could be access the FTP site from that address and we would need to configure it so only port 21 traffic from that computer goes out the x.x.110.251 address and our ISP sees x.x.110.251 not x.x.110.249 as the source IP address.

Also, how do we configure so only specific computers can do outgoing port 21, ftp, traffic.

Thanks in advance for assistance.Start Free Trial
[+][-]04.23.2008 at 07:28AM PDT, ID: 21421021

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zone: Cisco PIX Firewall
Tags: Cisco, ASA, 55xx, Configure multiple public IP address
Sign Up Now!
Solution Provided By: shuyun111
Participating Experts: 1
Solution Grade: A
 
 
[+][-]04.23.2008 at 09:05AM PDT, ID: 21422215

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]04.23.2008 at 11:22AM PDT, ID: 21423695

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628