Route traffic from a DMZ server to an internal server on PIX 515E

Posted on 2009-02-23
Last Modified: 2012-05-06
I have a PIX 515E firewall with 3 interfaces configured, Outside, Inside, and DMZ.  I have a web application run on LAN at "inside" interface, and this server must be run at LAN.  All my web server is deployed at DMZ network.  I want to deploy a portal site at DMZ but all traffic need to route back to that particular web application server at "inside" interface.

For example, the ip of internal web application server is and I am planning to have a portal web site with a public ip on DMZ, all web traffic such as port 80, 8888, 443, etc will be routed back to the server.  

Can I configure PIX to do this way?
Question by:KANEWONG
    LVL 29

    Accepted Solution

    Hello KANEWONG,
        I hope I understood you right, you actually want to run a portal web site on server at inside, and you want to be able to reach that server at Public IP from Internet correct? Or you want to place that server at DMZ?

    LVL 1

    Author Comment

    there are two servers involved.

    Server A - a public server on DMZ which hosting a dumpy or a redirect page.

    Server B - an intranet server which host in LAN on inside interface of PIX.

    Server B is hosting the actual web site which need to be used.  However; I do not want it directly exposed to public.  If I am not using NAT for address translation between a public ip and a local ip, any other option can do it?
    LVL 1

    Author Comment

    no solutions provided
    LVL 1

    Author Closing Comment


    Featured Post

    IT, Stop Being Called Into Every Meeting

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    Join & Write a Comment

    Suggested Solutions

    This is about downgrading PIX Version 8.0(4) & ASDM 6.1(5) to PIX 7.2(4) and ASDM 5.2(4) but with only 64MB RAM and 16MB flash. Background: You have a Cisco Pix 515E which was running on PIX 7.2(4) and its supporting ASDM 5.2(4) without any i…
    From Cisco ASA version 8.3, the Network Address Translation (NAT) configuration has been completely redesigned and it may be helpful to have the syntax configuration for both at a glance. You may as well want to read official Cisco published AS…
    how to add IIS SMTP to handle application/Scanner relays into office 365.
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…

    754 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    18 Experts available now in Live!

    Get 1:1 Help Now