asked on

Public IP forward

Is it possible to forward my supplied public IP's from my 1720 router - through a Cisco PIX506E - to my hosts in the DMZ? So it doesn't need to be natted into private IP's? Currently my ISP forwards me a block of 32 IP's, which are on a different subnet than their gateway and the outside interface of my router. I have the first forwarded public IP on the inside interface and the rest go to the websites, proxy server, etc. I just want to put a PIX in between but not lose the non-natted setup.

I want this:

Gateway from ISP ----------> Outside (1720) Inside --------> outside (PIX) inside ----------> hosts
66.XX.XX.1 66.XX.XX.2 66.XX.YY.94 ????? ?????? 66.XX.YY.65 - 93
they forward 66.XX.YY.64-95 forward 66.XX.YY.64-95

If the PIX is not equipped to do this, would another router be able to and how?

ASKER CERTIFIED SOLUTION

Pascal666

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

mzelinka

Why you need do this?
PIX do translation (NAT) any time. You can configure pix for translating ip on same ip. ( non traslating )
You can try put on PIX ip outside 66.XX.YY.65 inside 66.XX.YY.66 and non translate other ips. maybe it will work, but why then you have pix there??
Better solution is translate this ip, if you want do access your servers from outside...
Please try explain why you need do this solution...

Popeyediceclay

ASKER

Pascal- Do you mean subnet it? Right now my subnet is 255.255.255.224, I can bump that up to 255.255.255.240 and it will still work? And use the other block of 16 on the DMZ?

mzelinka - The reason why I can't have NAT is because it doesn't work with some things, like Netmeeting

SOLUTION

Les Moore

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial