Wohoo yeah this works :)
Thanks Farrukh and others.
the intra-interface + the static (inside,inside) is working.
Thanks so muchhh once again
Cheers,
Rudy
On Sat, Dec 13, 2008 at 1:43 AM, Farrukh Haroon <farrukhharoon_at_gmail.com> wrote:
> Hello Rudy
>
> Have a look at this link:
>
> http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00807968d1.shtml#problem
>
> Regards
>
> Farrukh
>
> On Fri, Dec 12, 2008 at 12:17 PM, Rudy Setiawan <rudal_at_online.rudal.com>
> wrote:
>>
>> Hi,
>>
>> we have a firewall, both outside and inside interfaces.
>> We have a SMTP server that lives in the inside network
>> and it's translated to a public IP on the outside interface.
>> SMTP inside IP: 10.10.1.2
>> Translated IP: 216.15.4.4
>> in the pix (version 7.2.3)
>> static (inside,outside) 216.15.4.4 10.10.1.2 netmask 255.255.255.255
>>
>> I have a workstation with IP 10.10.1.4 which has a translated IP of
>> 216.15.4.6
>> >From my workstation I tried to access 216.15.4.4 port 25 or ping
>> 216.15.4.4. I got request timed out.
>>
>> I have access-list that allows icmp as well as port 25 on the 216.15.4.4
>> IP.
>> I am able to access port 25 and ping the IP from anywhere in the world.
>>
>> How can I permit such traffic?
>>
>> Thanks,
>> Rudy
>> _______________________________________________
>> firewall-wizards mailing list
>> firewall-wizards_at_listserv.icsalabs.com
>> https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
>
>
_______________________________________________
firewall-wizards mailing list
firewall-wizards_at_listserv.icsalabs.com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Received on Dec 19 2008
Intro
