Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

using public IP after pix 525 firewall

Posted on 2006-11-12
5
Medium Priority
?
224 Views
Last Modified: 2007-02-12
hi
i have windows server2003  with IP 172.16.14.200 in floor 1 with VLAN 14 connect to distrbution switch (layer 3 use for routing )in floor 6 then connect to core switch then to pix 525 firewall then to router in floor 12 i want to use public IP (62.68.65.50) for this server how i can do that
can i use static nat to refer to my server (my pix 525 connect to core switch) public Ip is 62.68.65.50


its urgent
thanks
0
Comment
Question by:nasemabdullaa
  • 3
  • 2
5 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 2000 total points
ID: 17925198
>can i use static nat to refer to my server (my pix 525 connect to core switch) public Ip is 62.68.65.50
Yes.
static (inside,outside) 62.68.65.50 172.16.14.200 netmask 255.255.255.255

0
 

Author Comment

by:nasemabdullaa
ID: 17925223
hi
thanks for your reply
i have 14 VLAN can i use this command to enable public IP in any VLAN
then how i can open port 80 and 25 and 110 and 23 for this server

thanks
0
 

Author Comment

by:nasemabdullaa
ID: 17925228
hi
i mean i want to enable this port  for this interface

thaks

0
 
LVL 79

Expert Comment

by:lrmoore
ID: 17925275
>can i use this command to enable public IP in any VLAN
Yes. As long as the PIX can ping the host inside.

>then how i can open port 80 and 25 and 110 and 23 for this server
Acess-lists
 access-list outside_access_in permit tcp any host 62.68.65.50 eq http
 access-list outside_access_in permit tcp any host 62.68.65.50 eq smtp
 access-list outside_access_in permit tcp any host 62.68.65.50 eq pop3
 access-list outside_access_in permit tcp any host 62.68.65.50 eq telnet
access-group outside_access_in in interface outside
0
 

Author Comment

by:nasemabdullaa
ID: 17929917
hi  lrmoore
thanks
its work
0

Featured Post

The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Unable to change the program that handles the scan event from a network attached Canon/Brother printer/scanner. This means you'll always have to choose which program handles this action, e.g. ControlCenter4 (in the case of a Brother).
In this article I will be showing you how to subnet the easiest way possible for IPv4 (Internet Protocol version 4). This article does not cover IPv6. Keep in mind that subnetting requires lots of practice and time.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question