Forwarding traffic originating from a specific Internet host

Forwarding traffic originating from a specific Internet host
NewsGroups | Search | Tools
User Password
Register Now! Lost Password?
 comp.dcom.sys.cisco  Post an article  get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content  add this group's latest topics to your Google content  YahooMyWeb Yahoo!  Google Google  Windows Live Favorites Windows Live  del.icio.us del.icio.us  digg digg  Add to Netscape Netscape
Subject Author Date
Forwarding traffic originating from a specific Internet host elizabethkono 10-11-2006
Posted by on October 11, 2006, 8:49 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Hello

Is there a way to tell the pix to send traffic originating from a
certain server on the Internet to a server on my internal network over
specific ports with return traffic going out over a specific port
range? The traffic is being sent to my outside interface but I only
want it forwarded if it is coming from that one server's IP address.


Posted by Walter Roberson on October 11, 2006, 11:53 am

>Is there a way to tell the pix to send traffic originating from a
>certain server on the Internet to a server on my internal network over
>specific ports with return traffic going out over a specific port
>range? The traffic is being sent to my outside interface but I only
>want it forwarded if it is coming from that one server's IP address.

There are at least two ways:

1) set up an access-list that permits that traffic and apply
it to the outside interface via an access-group command

2) use "policy-static", which is an access-list applied as a 'static'
command; for any traffic that does not match the access-list, the
translation will not exist and so the pix will deny the other traffic.


Posted by on October 11, 2006, 9:47 pm
Thank you for responding Walter.
You're an important contributor to this group and I appreciate the
help.
Liz


Walter Roberson wrote:
>
> >Is there a way to tell the pix to send traffic originating from a
> >certain server on the Internet to a server on my internal network over
> >specific ports with return traffic going out over a specific port
> >range? The traffic is being sent to my outside interface but I only
> >want it forwarded if it is coming from that one server's IP address.
>
> There are at least two ways:
>
> 1) set up an access-list that permits that traffic and apply
> it to the outside interface via an access-group command
>
> 2) use "policy-static", which is an access-list applied as a 'static'
> command; for any traffic that does not match the access-list, the
> translation will not exist and so the pix will deny the other traffic.


Similar ThreadsPosted
redirect traffic on specific ip to specific interface June 3, 2005, 12:51 pm
vpn client to access some specific external host thru the vpn connection June 16, 2008, 10:44 am
Routing Question - How to send default internet traffic to PIX and VPN traffic from router out internet February 27, 2007, 1:58 pm
Monitoring specific traffic. October 3, 2006, 3:31 am
Can i forward all the traffic to a specific website? November 9, 2005, 11:10 pm
Direct Traffic for certain networks to specific route March 29, 2007, 8:58 pm
how to route traffic from server via specific static IP? May 1, 2008, 8:55 pm
cannot ping from subnet A to subnet B for a specific host August 3, 2006, 1:58 pm
Redirect Outbound SMTP Traffic to Specific Server - 837 and 2621 July 21, 2004, 5:15 pm
SMTP proxy to another Internet host July 19, 2004, 2:24 am

other useful resources:
The Federal Communications Commission (FCC)
Telecommunications Industry Association
Electronic and Software Security Products and Services
International Telecommunication Union

Custom CGI Perl and PHP programming by 1-Script.com

Contact Us | Privacy Policy
The site map in XML format XML site map