Firewall Wizards mailing list archives

RE: pix 501 as bridge firewall. Possible?

From: "Hoang, Binh P,,DMDCWEST" <Hoangbp () osd pentagon mil>
Date: Tue, 19 Aug 2003 11:52:45 -0400

You can use nat (inside) 0 which allows non-translation.

Nat (inside) 0 192.168.2.0 255.255.255.0 0 0

Hope this helps.

Binh Hoang

-----Original Message-----
From: Paul Matuszewski [mailto:sase () five-elements com] 
Sent: Sunday, August 17, 2003 11:37 PM
To: firewall-wizards () honor icsalabs com
Subject: [fw-wiz] pix 501 as bridge firewall. Possible?


Hey all,
I've used Pix's as NAT'ing firewalls specifying different address pools on
different interfaces on 10k situations.. works flawlessly.  However,
whenever I am doing any kind of situation where I need the internal network
has public IP space.. I use packet filtering on a router.

So my question is as follows, is the following situation possible:

OUTSIDE: 192.168.1.0/24
INSIDE: 192.168.2.0/24
Outside network communicates directly with inside IP's and vica versa with
NO natting.

Is that possible? or am I missing something here?

Thanks.

---------------------------

Paul Matuszewski
Systems Administration
In Office Networks
http://www.inofficenetworks.com
V:(516) 816-4871
V:(305) 799-4871
F:(305) 441-2804

_______________________________________________
firewall-wizards mailing list firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

pix 501 as bridge firewall. Possible? Paul Matuszewski (Aug 18)
- R: pix 501 as bridge firewall. Possible? edp (Aug 18)
- <Possible follow-ups>
- RE: pix 501 as bridge firewall. Possible? Hoang, Binh P,,DMDCWEST (Aug 19)