Check the list archive. I *just* got done asking this myself. Not a lot of responses that I recall... (guess I should have posted something about how much MS sucks or Linux is great) ;-)
What exactly are you trying to accomplish? If you have TAC access (some of them may be public), there are some excellent documents that I would encourage you to read. Here is a quick sample of passing inbound FTP and DNS using PAT. access-list 100 permit icmp any any echo-reply access-list 100 permit icmp any any time-exceeded access-list 100 permit icmp any any unreachable access-list 100 permit tcp any host 1.1.1.1 eq ftp access-list 100 permit tcp any host 1.1.1.1 eq ftp-data access-list 100 permit tcp any host 1.1.1.1 eq 8080 access-list 100 permit udp any host 1.1.1.1 eq domain nat (inside) 1 0.0.0.0 0.0.0.0 0 0 static (inside,outside) tcp 1.1.1.1 ftp 10.1.1.1 ftp netmask 255.255.255.255 0 0 static (inside,outside) tcp 1.1.1.1 ftp-data 10.1.1.1 ftp-data netmask 255.255.255.255 0 0 static (inside,outside) tcp 1.1.1.1 8080 10.1.1.1 www netmask 255.255.255.255 0 0 static (inside,outside) udp 1.1.1.1 domain 10.1.1.1 domain netmask 255.255.255.255 0 0 access-group 100 in interface outside HTH Wes Noonan, MCSE/MCT/CCNA/CCDA/NNCSS Senior QA Rep. BMC Software, Inc. (713) 918-2412 [EMAIL PROTECTED] http://www.bmc.com -----Original Message----- From: Brock [mailto:[EMAIL PROTECTED]] Sent: Wednesday, February 06, 2002 20:00 To: [EMAIL PROTECTED] Subject: NAT With a PIX 501 I got a pix 501 and I'm new to Cisco products. I'm looking for any web resources on how Cisco NAT, PAT works and how it works within the PIX also how to use NAT, PAT mappings and access-lists Any Thing Helps, Regards, Brock D. Mowry Hardware Dev. [EMAIL PROTECTED] _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
