Need help with a simple port forwarding problem

[Vin999]

Hi,

Can anyone clear this up for me?

1. I have 1 global IP address from my ISP - 80.xxx.xxx.225

2. I have a Netgear router/modem connected to the Internet, the external interface uses the 80.xxx.xxx.225 & the internal interface uses 192.168.2.1

3. I have a Cisco Pix 501, with External address of 192.168.2.2 & Internal address 192.168.1.1

4. The router port forwards all traffic on port 80 & port 25 to the Mail Server External interface 192.168.1.2

(Router)----(Pix)----(Mail Server)

The Router can obviously ping 80.xxx.xxx.225 & 192.168.2.2 because it is directly connected to these interfaces.

It cannot ping 192.168.1.1 OR 1.2, so am I wrong in telling the Router to Port forward all Traffic on ports 25 & 80 to my Mail Server External interface 192.168.1.2, which the Router cannot possibly see???

If the Router port forwards to the external interface of the Pix(192.168.2.2), then how will the Pix pass this onto the external interface of my Mail server???

Thanks in Advance.
Vinny

 

[LloydSev]

This will fix your config, which I looked at in the other thread.

static (inside,outside) tcp interface smtp 193.100.1.2 smtp netmask 255.255.255.255 0 0

Computer/Network Technician
CCNA

 

[Vin999]

Hi LloydSev,

Thanks for you reply,

I am not doing Nat or Pat on the pix, this is being done by the router and the Pix is only forwarding requests.

This is why I don't use statics statements.

I was just confused about the router because smtp traffic is not getting through an wanted to make sure what i'm doing with the router is not incorrect.

Regards Vinny

 

[LloydSev]

the static is just for smtp traffic...

Looking at your setup, I didn't see anything that actually forwarded the smtp and http traffic to the 192.168.1.2 box. I saw the ACLs.. but nothing that forced traffic to your box.

Computer/Network Technician
CCNA