RE: iChat A/V and Cisco PIX 501 (6.3)

["Melson, Paul" <PMelson () sequoianet com>]

You probably won't be able to use DHCP with statics on your network as
you describe it.  The only way I could think of to do this would be
statically map a MAC address to an IP address on your DHCP server.
Which, BTW, isn't a feature of the PIX dhcpd.  

The way I would set this up in an office environment would be to use a
NAT pool with an overload address and DHCP.  That way, assuming that the
number of users is close to the number of public addresses in the NAT
pool, most users would automatically get a static NAT, and would only
use global PAT if there were no more available external addresses in the
NAT pool.

PaulM

> -----Original Message-----
> Thanks for the info - does that mean that I will not be able to 
> implement a solution to accommodate DHCP clients in my environment?  
> How If I was setting this up in an office environment (which I 
> attempted 6 months ago to no avail), do all of the clients 
> need to have 
> static IPs to properly set up the port redirection?
>
> I do have more than one public IP, but i only have 5 - 4 are 
> configured 
> for static translations to servers for mail, web, etc.  I 
> only have one 
> IP that I have available as a global address for NAT.
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards