I have recently upgraded to a sbs2003 server from nt4.5. We have a cisco pix 501 firewall installed by a local dealer who no longer supports it. Our ISP provides us with 8 static ip - xx.xx.xx.104 to 111. Currently the pix501 is configured to allow anyone inside to access the internet on ip .104, e mail is coming to my server via ip .111 and we have a couple of pcanywhere clients using ip's .105, 106, 107. I'd like to configure the pix501 to allow access to features of SBS so that all users can get to their desktops. I have done this at other installations with the linksys router by using port forwarding of ports 443-444, 3389 and 4125 to the server ip when there was just 1 static ip. I'm not sure how to configure the pix501 to acomplish the same task. I am using the PDM device manger 2.0 to configure the 501. I have my server setup in the hosts/network tab with the server's ip 10.0.0.3 matched with the isp ip of xx.xx.xx.111. I have setup a translation rule for 10.0.03 to xx.xx.xx.111. For the mail I have setup an access rule for smtp & htpp and the mail works fine. I setup an access rule for the ports required by sbs2003 remote using service group I named sbsremote for the 4 ports required for sbsremote. when I try to access sbs remote using xx.xx.xx.111/remote I can't connect. Any ideas?
static (inside,outside) tcp xx.xx.xx.xx 3389 yy.yy.yy.yy 3389 netmask 255.255.255.255 0 0
x= outside address