Solved

Internet providor change

Posted on 2008-06-25
2
290 Views
Last Modified: 2010-04-21
Hello all:

    I have a Cisco Pix 506E Firewall setup and is working fine currently.  We have outgrown our DSL connection and have had a T1 installed.  I'm kinda new to this network stuff but I know I can't just unplug it from my DSL modem and plug it into the T1 Router.  In the process of changing over we had only 1 external ip before now I have a block of them  I would like to change the NAT around a little. I have the following services:

FTP
Terminal Services
and normal Internet traffic (web)
and in the future I would like to bring our web site internal instead of being hosted on the net.

I think the NAT just looks at port trafic and sends it to what ever server IP the function is served on.
example FTP:  inbound traffic on port 21 is sent to my ftp server's ip address etc.

I just thought of this.  My new T1 has a Cisco 1700 Series router after the D-mark wouldn't this need to be configured as well?  

I still want every thing to go through the firewall but I would like to have severel different outside Ip's

current static outside IP
000.000.000.001  port 21 nats to 000.000.111.100  - Ftp Server
000.000.000.001  port (Term. services port number can't remember what it is) nats to 000.000.111.101 - Terminal server

I would like to have somehting like
new static outside Ip's
100.000.000.050 port#21 nats to 000.000.111.100 - FTP Server
100.000.000.051 Terminal services port# nats to 000.000.111.101 - Terminal Server
100.000.000.052 WebSite traffice Port# nats to 000.000.111.102 - Web Server

Like I said I'm new to this so any help would be nice and please excuse my ignorance if my thoughts do not match reality.  

Dave

0
Comment
Question by:MedSouth
2 Comments
 
LVL 13

Accepted Solution

by:
kdearing earned 500 total points
ID: 21871694
If the 1700 is being provided by the ISP, then you have a 'managed' circuit.
You won't be able to get access to it.

You'll have to re-configure your WAN port for the new IP address.
I'm not completely sure if the 506E supports multiple WAN IPs.
0
 

Author Closing Comment

by:MedSouth
ID: 31514430
Sorry I took so long getting back to this ....   thanks for the help.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Optimal Xbox 360 connectivity requires "OPEN NAT". If you use Juniper Netscreen or SSG firewall products in a home setting, the following steps will allow you get rid of the dreaded warning screen below and achieve the best online gaming environment…
Hello , This is a short article on how would you go about enabling traceoptions on a Juniper router . Traceoptions are similar to Cisco debug commands but these traceoptions are implemented in Juniper networks router . The following demonstr…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now