<div>
Thanks for the response hawgpig. &nbsp;That worked!
</div>


Thanks for the response hawgpig.  That worked!

<div>
<div class="content wysiwyg-content">
We are planning a PIX install. &nbsp;I have a pool of 14 Public IP Addresses that are free (it is a class C 204.x.x.x/26 network that has been subnetted down even further. &nbsp;So actually the 14 addresses would be like 204.x.x.x/28). &nbsp;I plan on using a 204.x.x.x/30 for the outside interface and the router so that would be a seperate network. &nbsp;We have quite a bit of people who use the internet on our network. &nbsp;Probably 150 or so connections at any given time for mainly research. &nbsp;So my question is this: would it be beneficial to setup our PIX with that pool of public ip addresses or would it be better to just use the 1 public IP Address on the outside interface and PAT? &nbsp;Or both?<br />
<br />
Also, we have one server that resides on the inside interface that must have a public IP or it will not function correctly. &nbsp;So I can't really use NAT for it! &nbsp;What do I have to do about that one?<br />
<br />
I guess I am really looking for some good advice here since I know my IOS stuff but I am not so clear yet on the PIX. &nbsp;Many thanks!!!
</div>
</div>


We are planning a PIX install.  I have a pool of 14 Public IP Addresses that are free (it is a class C 204.x.x.x/26 network that has been subnetted down even further.  So actually the 14 addresses would be like 204.x.x.x/28).  I plan on using a 204.x.x.x/30 for the outside interface and the router so that would be a seperate network.  We have quite a bit of people who use the internet on our network.  Probably 150 or so connections at any given time for mainly research.  So my question is this: would it be beneficial to setup our PIX with that pool of public ip addresses or would it be better to just use the 1 public IP Address on the outside interface and PAT?  Or both?

Also, we have one server that resides on the inside interface that must have a public IP or it will not function correctly.  So I can't really use NAT for it!  What do I have to do about that one?

I guess I am really looking for some good advice here since I know my IOS stuff but I am not so clear yet on the PIX.  Many thanks!!!

PIX 515E with a pool of 14 Public IP Addresses, NAT/PAT Question.

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Software Firewalls

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).