Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations derfloh on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

PIX 506e and PC Anywhere

Status
Not open for further replies.
LonC25

LonC25

IS-IT--Management
Nov 19, 2002
62
US
I have PC anywhere working to one machine, but I would like to know if I can set my PIX up to accept a connection from the outside and have it look for any machines waitiong for a PC Anywhere connection on my network.

I other words I would like to be able to come in from outside and have the ability to access multiple machines.

Here is what I have so far.


global (outside) 1 ???.???.74.135-208.137.74.158 netmask 255.255.255.0
global (outside) 1 ???.???.74.134
nat (inside) 1 0.0.0.0 0.0.0.0 0 0
static (inside,outside) ???.???.74.133 192.168.1.10 netmask 255.255.255.255 0 0
static (inside,outside) ???.???.74.132 192.168.1.14 netmask 255.255.255.255 0 0
static (inside,outside) interface 192.168.1.123 netmask 255.255.255.255 0 0
conduit permit icmp any any
conduit permit tcp host ???.???.74.133 eq pop3 any
conduit permit tcp host ???.???.74.133 eq smtp any
conduit permit tcp host ???.???.74.133 eq 143 any
conduit permit tcp host ???.???.74.133 eq conduit permit tcp host ???.???.74.133 eq 443 any
conduit permit tcp host ???.???.74.133 eq 563 any
conduit permit tcp host ???.???.74.132 eq 1723 any
conduit permit gre host ???.???.74.132 any
conduit permit tcp any eq 5631 any
conduit permit tcp any eq 5632 any
conduit permit gre any any
route outside 0.0.0.0 0.0.0.0 ???.???.74.129 1

Let me know
 
Sort by date Sort by votes
HI.

> conduit permit tcp any eq 5632 any
As far as I know it should be UDP 5632 instead of TCP, in addition to TCP 5631. Isn't it so?

You can remove this line:
> global (outside) 1 ???.???.74.135-208.137.74.158
Mixing PAT and NAT makes management and troubleshooting more dificult, because the same workstation might get NAT address today, and PAT tomorrow.
And now you get 4 additional ip addresses to play with or future use.

Now choose one of 2 options:
1) Use static for each workstation that needs PCAW connectivity.

2) Use VPN to access the internal network, and PCAW over the VPN tunnel using internal IP addresses.

Bye
Yizhar Hurwitz
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
731
Sameer258
Sameer258
Tommy_T
  • Locked
  • Question
Sonic wall - Have an issue remotely connectioning VNC and SMB (and AFP) to one of the 2 ISP circuits
Replies
1
Views
551
nnaarrnn
nnaarrnn
Nitta84
  • Locked
  • Question
navigation slow and tcp syc/ack drop
Replies
0
Views
476
Nitta84
Nitta84
xwray
  • Locked
  • Question
PIX 501 DHCP Server function
Replies
0
Views
110
xwray
xwray
brownmab53
  • Locked
  • Question
PIX 525 ASA not allowing DHCP addresses to pass through to router
Replies
0
Views
153
brownmab53
brownmab53

Part and Inventory Search

Sponsor

Back
Top