jonhalton
asked on
Using Alias to translate external IP address to Internal but only on Inside interface.
Hi
I have a Pix 515 which is translating external IP addresses into internal IPs using the Static command. This works when users outside the network enter an external IP as it is translatied into one of the internal IPs on the network. But what does not appear to happen is that if a user within the network enters an external IP it is not translating this to the internal Ip address. At present the main NAT is setup as follows:
static (inside,outside) 99.99.99.99 192.168.0.x netmask 255.255.255.255 0 0
I have tried using Alias as follows:
alias (inside) 192.168.0.x 99.99.99.99 255.255.255.255
but this does not seem to work
Any suggestions would be appreciated.
I have a Pix 515 which is translating external IP addresses into internal IPs using the Static command. This works when users outside the network enter an external IP as it is translatied into one of the internal IPs on the network. But what does not appear to happen is that if a user within the network enters an external IP it is not translating this to the internal Ip address. At present the main NAT is setup as follows:
static (inside,outside) 99.99.99.99 192.168.0.x netmask 255.255.255.255 0 0
I have tried using Alias as follows:
alias (inside) 192.168.0.x 99.99.99.99 255.255.255.255
but this does not seem to work
Any suggestions would be appreciated.
ASKER
Hi
Yes, I have seen this and this is why I tried
alias (inside) 192.168.0.x 99.99.99.99 255.255.255.255
I have tested by running a tracert of the external address from within the network and it just times out. If I run the tracert using the internal address it finds in 1 hop. From this I am concluding that the translation is not converting external address to the internal one when inside the network. None of the machines on the network use the external address so it should be going through the firewall to find it. Would you say this is the case or am I missing something?
Yes, I have seen this and this is why I tried
alias (inside) 192.168.0.x 99.99.99.99 255.255.255.255
I have tested by running a tracert of the external address from within the network and it just times out. If I run the tracert using the internal address it finds in 1 hop. From this I am concluding that the translation is not converting external address to the internal one when inside the network. None of the machines on the network use the external address so it should be going through the firewall to find it. Would you say this is the case or am I missing something?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Sorry, yes, I forgot about that, after trying using the domain name, it is translating correctly.
Thank you for your assistance.
Thank you for your assistance.
Your welcome.
regards
keith
regards
keith
http://www.cisco.com/warp/public/110/alias.html