Pix 501 multiple external IP addresses

Posted on 2005-05-17
Medium Priority
Last Modified: 2013-11-16

I need to replace a GTA gnatbox with a cisco pix 501, which would usually be straight forward enough, but theres a small catch.

The gnatbox supports aliasing multiple IP addresses to the exterrnal interface, which we currently use to provide for fault tolerance for email etc. After the external interface there is 2 adsl routers from 2 different ISP's, so the external interface has (for example) as its primary IP, and as its alias. Both & are port forwarded through to a mail & web server on the Lan.

How do you do this with the pix? I can only seem to specify 1 outside IP address at a time?


Question by:heathcote123
  • 2
  • 2
LVL 79

Accepted Solution

lrmoore earned 2000 total points
ID: 14023073
If you need the same functions, the PIX 501 is not the product for you. I'm a huge fan of the PIX, but it's not right for every situation. As you noticed, you can have one and only one IP address assigned to the interface, and you can have one and only one default gateway assigned at a time.
Wish I had better news for you. You might want to look at a Cisco 1841 security router. Most any Cisco router will provide that capability, but the new 1841 is designed for security applications like this.

Author Comment

ID: 14025071
I thought that may be the case. Thanks for confirming.

Author Comment

ID: 14045747
A follow up question if I may!

It's been suggested to me that the alias command can be used on the outside interface on the 501, though I couldnt find any documention to support using the alias command in that way.

Alternatively, if I went up to a 506, would that support multiple IP's on the outside interface?
LVL 79

Expert Comment

ID: 14049833
No PIX supports multiple IP's on one interface. You can put any number of secondary IP's on any Cisco router interface, but alas, the PIX ain't a router.

Alias command has been deprecated and replaced by outside nat. It is used by internal users trying to connect to an internal server using the public IP address. Mainly. I don't see any use for it in your situation.


Featured Post

Free recovery tool for Microsoft Active Directory

Veeam Explorer for Microsoft Active Directory provides fast and reliable object-level recovery for Active Directory from a single-pass, agentless backup or storage snapshot — without the need to restore an entire virtual machine or use third-party tools.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Concerto Cloud Services, a provider of fully managed private, public and hybrid cloud solutions, announced today it was named to the 20 Coolest Cloud Infrastructure Vendors Of The 2017 Cloud  (http://www.concertocloud.com/about/in-the-news/2017/02/0…
As managed cloud service providers, we often get asked to intervene when cloud deployments go awry. Attracted by apparent ease-of-use, flexibility and low computing costs, companies quickly adopt leading public cloud platforms such as Amazon Web Ser…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Suggested Courses

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question