Solved

cisco pix port redirection for a range of ports to one host

Posted on 2003-11-05
3
4,666 Views
Last Modified: 2013-11-29
Hi,  i am trying to configure a cisco pix 506e running 6.3.1 to have a range of ports redirected to a host. For example, tcp ports 5000 thru 6000 should be redirected to 192.168.4.4 and tcp ports 7000-8000 to 192.164.4.5. I also only have one public ip address so I am doing PAT as well.
 I need the appropraite static commands for each host as well as the acls.


This is the usual command i use for one port,  

static (inside,outside) tcp 209.195.146.118 ftp FTPHTTP ftp netmask 255.255.255.255 0 0

0
Comment
Question by:ckassouf
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 9690734
Sorry, but there is no easy way around this by assigning a port range to a static PAT statement..
0
 

Expert Comment

by:juanmamerino
ID: 9693012
Map every port you need using the command you mentioned and don't forget to add a new conduit line for each port or use access-lists.

Mapping:
static (inside,outside) tcp 195.1.1.1 5000 192.168.0.2 5000 netmask 255.255.255.255 0 0

Conduit:

conduit permit tcp host 195.1.1.1 eq 5000 any

Hope this help,

Juanma Merino
Barcelona
0
 

Author Comment

by:ckassouf
ID: 9695052
Thanks to all,  you verified what my hunch was,  statics can only be done port by port.  Take care !
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Even if you have implemented a Mobile Device Management solution company wide, it is a good idea to make sure you are taking into account all of the major risks to your electronic protected health information (ePHI).
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question