Pix 501 adding static www route

Posted on 2004-10-26
Last Modified: 2008-01-09
I have a pix 501 that was already configured before I started working with it.  I have never had to work with one before now, so I am not sure i have the proper syntax.  

I have the following static routes already in place:
static (inside,outside) tcp www www netmask 255.255.255
.255 0 0
static (inside,outside) tcp smtp smtp netmask 255.255.2
55.255 0 0
static (inside,outside) tcp pop3 pop3 netmask 255.255.2
55.255 0 0
static (inside,outside) tcp www www netmask 255.255.255
.255 0 0

I tried to add a static route with the following result:

static (inside,outside) tcp www netmask 0 0
invalid local port netmask
Usage:  [no] static [(real_ifc, mapped_ifc)]
                {<real_ip> [netmask <mask>]} | {access-list <acl_name>}
                [dns] [norandomseq] [<max_conns> [<emb_lim>]]
        [no] static [(real_ifc, mapped_ifc)] {tcp|udp}
                {<mapped_ip>|interface} <mapped_port>
                {<real_ip> <real_port> [netmask <mask>]} |
                {access-list <acl_name>}
                [dns] [norandomseq] [<max_conns> [<emb_lim>]]

any ideas what i am doing wrong?
Question by:sigkappu
    LVL 79

    Accepted Solution

    Simply missing the "www" after the local ip:

        >static (inside,outside) tcp www netmask 0 0
    Should be:
          static (inside,outside) tcp www www netmask 0 0
    You should also always clear xlates before changing/creating new static nat statements:
    Pixfirewall(config)#clear xlate
    Pixfirewall(config)#static (inside,outside) tcp www www netmask

    Author Comment

    Thanks I knew it was something simple.
    LVL 79

    Expert Comment

    Glad to help!    <8-}


    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    Join & Write a Comment

    Suggested Solutions

    Title # Comments Views Activity
    H3C WX5004 2 63
    iptables port redirection 8 45
    windows 10 being blocked by AVG 3 48
    Trojan blocked 11 70
    If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
    This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
    This video is in connection to the article "The case of a missing mobile phone (". It will help one to understand clearly the steps to track a lost android phone.
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…

    745 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    14 Experts available now in Live!

    Get 1:1 Help Now