506E - more than one outside IP?

Posted on 2004-08-23
Medium Priority
Last Modified: 2010-04-09
We have dual T1s coming into our 506E - and to the internet we have 255 IPs.  We have about 5 servers behind the firewall, i was wondering if it was possible with the 506 to do a NAT of the external straight to the internal?  If so, what do i need to assign the eth0 (outside) IP to?  and do i just create statics & access-lists to do the straight nat?

Question by:NickUA
  • 3
LVL 79

Accepted Solution

lrmoore earned 2000 total points
ID: 11874909
Yes, you can create multiple internal-to-external static NAT translations:

static (inside,outside) <public ip1> <private IP1> netmask
static (inside,outside) <public ip2> <private IP2> netmask
static (inside,outside) <public ip3> <private IP3> netmask


LVL 79

Expert Comment

ID: 11874929
>We have dual T1s coming into our 506E
I would say that actually you have a router in front of your PIX that connects to dual T1's. Are both T1's to the same ISP?
How many users do you support on the internal network, or is this mainly for inbound traffic to servers? The 506 was not designed as a datacenter firewall, it is more of a small-business box <50 users..

Author Comment

ID: 11883383
only 5 or so users on the inside - just developers - the T1s are for basic web servers and the like.

506 okay irmoore?  when our budget permits we'll probably get a 515.

LVL 79

Expert Comment

ID: 11883613
You should be OK until your budget grows...


Featured Post

We Need Your Input!

WatchGuard is currently running a beta program for our new macOS Host Sensor for our Threat Detection and Response service. We're looking for more macOS users to help provide insight and feedback to help us make the product even better. Please sign up for our beta program today!

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
In response to a need for security and privacy, and to continue fostering an environment members can turn to for support, solutions, and education, Experts Exchange has created anonymous question capabilities. This new feature is available to our Pr…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…

607 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question