<div>
Create a single translation rule that maps one public IP to the internal host. &nbsp;Create an access list that allows the port range using &nbsp;the aforementioned service group. &nbsp;You cannot use service groups to define NAT -- only access lists. &nbsp;If you do not have an available public IP, buy a block from your provider.
</div>


Create a single translation rule that maps one public IP to the internal host.  Create an access list that allows the port range using  the aforementioned service group.  You cannot use service groups to define NAT -- only access lists.  If you do not have an available public IP, buy a block from your provider.

<div>
So are you telling me that using a single public IP I cannot do multiple service groups and/or single ports forwards to different internal hosts? &nbsp;I am able to forward multiple single ports to different hosts, but cannot figure out how to do groups.<br />
<br />
Is that my final answer from ruddg? &nbsp;
</div>


So are you telling me that using a single public IP I cannot do multiple service groups and/or single ports forwards to different internal hosts?  I am able to forward multiple single ports to different hosts, but cannot figure out how to do groups.

Is that my final answer from ruddg?  

<div>
Thanks for your help ruddg, inspite of the answer I was looking for :-)
</div>


Thanks for your help ruddg, inspite of the answer I was looking for :-)

<div>
<div class="content wysiwyg-content">
Hi all experts,<br />
Is there a way to forward a service group to an internal host on the pix 501? &nbsp;Basically what I need to do is open about 2000 ports to a specific host and am trying to find out if i can avoid creating 2000 translation rules...<br />
<br />
Let me know if that is doable and how.<br />
<br />
Thanks much!
</div>
</div>


Hi all experts,
Is there a way to forward a service group to an internal host on the pix 501?  Basically what I need to do is open about 2000 ports to a specific host and am trying to find out if i can avoid creating 2000 translation rules...

Let me know if that is doable and how.

Thanks much!

PIX 501 service group forwarded to internal host

Networking is the process of connecting computing devices, peripherals and terminals together through a system that uses wiring, cabling or radio waves that enable their users to communicate, share information and interact over distances. Often associated are issues regarding operating systems, hardware and equipment, cloud and virtual networking, protocols, architecture, storage and management.

Networking

The Domain Name System (DNS) is a hierarchical, globally distributed system responsible for associating the name of a computer, service or other resource into an IP address for connecting to the Internet or a private network. Most prominently, it translates domain names to the numerical IP addresses needed for the purpose of computer services and devices worldwide.

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).