In article <brvr0t01naq@enews4.newsguy.com>,
Kirk Goins <kgoins@aracnet.com> wrote:
:Setup #1 Linksys router with 1 Public IP and say 12 devices on the
:inside at 192.168.100.x
:Setup #2 Cisco PIX 501 at 6.3 with 1 Public IP and say 12 devices on the
:inside at 192.168.100.x
:With setup #1 a few mouse clicks and I can map any inbound port to any
:inside address like FTP to 192.168.100.2 and SMTP to 192.168.100.3 etc
:all using the same public IP.
:With setup #2 I'm being told I can't do that and for the example just
:above I would need at least 3 IPs (1 for FTP, 1 for SMTP and 1 for all
ther traffic). Is that right?
Not true. Static port forwarding became available in PIX 6.2,
and you can configure it using the PDM graphical manager.
The limitation is that you cannot use static port forwarding
for telnet or one particular port used by the PIX firewall manager.
Those two ports are grabbed by the PIX for its own use.
static (inside, outside) tcp interface smtp 192.168.100.3 smtp
static (inside, outside) tcp interface ftp 192.168.100.2 ftp
static (inside, outside) tcp interface ftp-data 192.168.100.2 ftp-data
--
History is a pile of debris -- Laurie Anderson
