Welcome to Firewall.cx   Cisco Technical Knowledgebase
Modules
· Home
· Alternative Menu
· Amazon
· Cisco Decrypter
· Cisco Lab Partners
· Feedback
· Forums
· Max Arcade
· Private Messages
· Recommend Us
· Statistics
· Stories Archive
· Submit News
· Surveys
· Topics
· Web Links
· Your Account
 
Cisco Knowledgebase Articles
 
Site Info
Your IP: 38.107.191.111

Welcome, Anonymous
Nickname
Password

· Register
· Lost Password
Server Date/Time
31 July 2010 13:47:16 EEST (GMT +3)
 
Top Downloads
 
Gold Lab Partners


 
Firewall.cx: Forums

Firewall.cx :: View topic - Two WAN Connections
Forums Home
Forum FAQ :: Search :: Memberlist :: Usergroups
Profile :: Log in to check your private messages :: Log in

Two WAN Connections
 View next topic
View previous topic
Post new topic   Reply to topic  Firewall.cx Forum Index » Firewall Filtering, IDS/IPS & Security
Author Message
taq
New Member
New Member


Joined: Apr 17, 2006
Posts: 17
PostPosted: Tue Mar 09, 2010 9:01 am    Post subject: Two WAN Connections Reply with quote
Hi guys,

Would like to know that can a firewall with one port connected to internet and another port connected to a private WAN? Both ports to use NAT.

Is it possible.

Thanks.
Back to top
View user's profile Send private message
Losh
Occasional Member
Occasional Member


Joined: May 13, 2009
Posts: 71
Location: Kenya
PostPosted: Tue Mar 09, 2010 10:37 am    Post subject: Reply with quote
NAT is always used on the outside interface. The firewall will always ask you to identify your inside (trusted) interface and outside (untrusted) interface then it will apply NAT to your outside interface.
_________________
CCNA CERTIFIED.
CCNP ... Working on it!
Back to top
View user's profile Send private message
krik
Occasional Member
Occasional Member


Joined: Sep 05, 2006
Posts: 66
Location: Belgium
PostPosted: Tue Mar 09, 2010 11:25 am    Post subject: Reply with quote
Hi taq,

It depends which firewall you're referring to... On a Cisco firewalls (PIX, ASA or FWSM) you can NAT whatever you want on whatever interface you want. You'll have to use "static" and/or "global" commands.

Non Cisco firewalls like Juniper Netscreen or Checkpoints allow this as well.


If you use a Cisco router as firewall, then you have to define some interfaces as "outside" and other as "inside" interfaces. The NAT is only possible when a packets flows from an inside interface to an outside interface or from an outside interface to an inside interface. For this you'll use the "ip nat source ..." and "ip nat destination ..." commands.
_________________
Christophe Lemaire
http://www.exp-networks.be/blog/
Back to top
View user's profile Send private message Visit poster's website
taq
New Member
New Member


Joined: Apr 17, 2006
Posts: 17
PostPosted: Wed Mar 10, 2010 3:02 am    Post subject: Reply with quote
Hi all,

Thanks for the reply. It really helps.

Regards.
Back to top
View user's profile Send private message
Display posts from previous:       
Post new topic   Reply to topic  Firewall.cx Forum Index » Firewall Filtering, IDS/IPS & Security


 Jump to:   




View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum




smartDark Style © 2002 Smartor
Powered by phpBB © 2001, 2002 phpBB Group
 
Forums ©

© Copyright 2000-2010 Firewall.cx - All Rights Reserved

Copyright of all documents and images belonging to this site by Firewall.cx. Information contained on this site is copyrighted material.

It is illegal to copy or redistribute this information in any way without the written consent of Firewall.cx


Firewall.cx disclaims any responsibility for software and information obtained through this site or its links.


Page Generation: 0.35 Seconds