Firewall Wizards mailing list archives
RE: iChat A/V and Cisco PIX 501 (6.3)
From: "Melson, Paul" <PMelson () sequoianet com>
Date: Wed, 28 Apr 2004 14:12:52 -0400
You probably won't be able to use DHCP with statics on your network as you describe it. The only way I could think of to do this would be statically map a MAC address to an IP address on your DHCP server. Which, BTW, isn't a feature of the PIX dhcpd. The way I would set this up in an office environment would be to use a NAT pool with an overload address and DHCP. That way, assuming that the number of users is close to the number of public addresses in the NAT pool, most users would automatically get a static NAT, and would only use global PAT if there were no more available external addresses in the NAT pool. PaulM
-----Original Message----- Thanks for the info - does that mean that I will not be able to implement a solution to accommodate DHCP clients in my environment? How If I was setting this up in an office environment (which I attempted 6 months ago to no avail), do all of the clients need to have static IPs to properly set up the port redirection? I do have more than one public IP, but i only have 5 - 4 are configured for static translations to servers for mail, web, etc. I only have one IP that I have available as a global address for NAT.
_______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- iChat A/V and Cisco PIX 501 (6.3) Brian Galdino (Apr 27)
- <Possible follow-ups>
- RE: iChat A/V and Cisco PIX 501 (6.3) Melson, Paul (Apr 28)
- Re: iChat A/V and Cisco PIX 501 (6.3) Brian Galdino (Apr 28)
- RE: iChat A/V and Cisco PIX 501 (6.3) Melson, Paul (Apr 28)