- Posts: 24
- Thank you received: 0
explanation of commands
- susetechie
- Topic Author
- Offline
- Junior Member
Less
More
18 years 11 months ago #11672
by susetechie
"Go away or I will replace you with a very small shell script"
explanation of commands was created by susetechie
hi all,
I am just getting into the world of cisco pix and i am a little confused on the nat commands. i got these two lines from the cisco site:
global (outside) 1 192.168.1.20-192.168.1.254
nat (inside) 1 10.0.0.0 255.0.0.0
I understand the nat command and what it says, i think. My understanding of that command means that the 10.0.0.0 network will be the inside network that will be translated. now the global command with the ip range is where i get a little confused. is the range a must have? that looks to me to be a "many to many" setup. what if you want a many to one setup. can you just have one address where the range is located now? i guess i am asking basically i want my 10.0.0.0 network on the inside to resolve to one ip and not several. make sense?
TIA,
M
I am just getting into the world of cisco pix and i am a little confused on the nat commands. i got these two lines from the cisco site:
global (outside) 1 192.168.1.20-192.168.1.254
nat (inside) 1 10.0.0.0 255.0.0.0
I understand the nat command and what it says, i think. My understanding of that command means that the 10.0.0.0 network will be the inside network that will be translated. now the global command with the ip range is where i get a little confused. is the range a must have? that looks to me to be a "many to many" setup. what if you want a many to one setup. can you just have one address where the range is located now? i guess i am asking basically i want my 10.0.0.0 network on the inside to resolve to one ip and not several. make sense?
TIA,
M
"Go away or I will replace you with a very small shell script"
18 years 11 months ago #11678
by reaper
Replied by reaper on topic Re: explanation of commands
If you only have a single IP you should use NAT overloading, which means every client gets a port assigned in the NAT-table to the one IP provided. This is the command for achieving this "ip nat pool ovrld 172.16.10.1 172.16.10.1 prefix 24"
This is also a good link. www.cisco.com/warp/public/556/12.html
This is also a good link. www.cisco.com/warp/public/556/12.html
- susetechie
- Topic Author
- Offline
- Junior Member
Less
More
- Posts: 24
- Thank you received: 0
18 years 11 months ago #11681
by susetechie
"Go away or I will replace you with a very small shell script"
Replied by susetechie on topic Re: explanation of commands
AH! I see now. this explanation uses a 2500 router, is this the same as it would be on a pix?
"Go away or I will replace you with a very small shell script"
Time to create page: 0.131 seconds