Yi,
I'm a bit confused on what your trying to accomplish. It appears that
the addresses on the inside of the PIX are in the 192.168.0.0/24 range,
as shown by your static command. However, you want host 192.168.0.198,
which is on the inside, to go through the PIX and come back to the
inside and connect to the server at address 192.168.0.199?
I don't know why you would want to do this, and in any event this cannot
be done with the PIX. If you are on the inside already, you can't send
packets to the PIX and have them routed back to the inside. Devices on
the inside would connect to the inside server directly.
Or am I misunderstanding what your trying to do?
Regards,
Kent
---------------------------------------------------------------------------
I've created conduits for a Pix firewall for outside connections.
However,
connecting through the static NAT addresses will fail unless the inside
address is used. For example:
static (inside,outside) 199.199.199.199 192.168.0.199 netmask
255.255.255.255
conduit permit tcp host 199.199.199.199 eq http any
I cannot connect to 199.199.199.199 from 192.168.0.198. Does anyone
know
why? Any other connection works fine (example: 199.199.199.190 if it
does
not go through the Pix).
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
