Solved: no route ro message (message nr 110001)

RENE SEGESSENMANN · ‎11-17-2006

Hello all

Have a PIX with 6.3.4 running. Want to route traffic internal to a L3 device. Static route to inside are configured.

route inside 10.57.7.0 255.255.255.0 10.57.1.3 1

Default GW for internal devices are the PIX. If a device on inside tris to reach a host in the subnet 10.57.7.0, the PIX get the message "no route to 10.57.7.x from 10.57.1.x"

Watts the problem?

a.kiprawih · ‎11-17-2006

This is because PIX (by default) cannot re-route/redirect traffic to another L3 device. All traffic directed to PIX must be sent or go through PIX and going out its to other interfaces.

The 'route inside' statement above is to allow PIX to send traffic to the segment hosted on/by 10.57.1.3 L3 device.

Therefore, your internal host must point to other L3 device, or the 10.57.1.3 as gateway. Then, on the 10.57.1.3 device, add static/default route to PIX inside interface to allow access to internet/outside.

10.57.1.3:

ip route 0.0.0.0 0.0.0.0

Hope this helps. Pls rate all post(s)

AK

View solution in original post

a.kiprawih · ‎11-17-2006

This is because PIX (by default) cannot re-route/redirect traffic to another L3 device. All traffic directed to PIX must be sent or go through PIX and going out its to other interfaces.

The 'route inside' statement above is to allow PIX to send traffic to the segment hosted on/by 10.57.1.3 L3 device.

Therefore, your internal host must point to other L3 device, or the 10.57.1.3 as gateway. Then, on the 10.57.1.3 device, add static/default route to PIX inside interface to allow access to internet/outside.

10.57.1.3:

ip route 0.0.0.0 0.0.0.0

Hope this helps. Pls rate all post(s)

AK

RENE SEGESSENMANN · ‎11-17-2006

Hi, thank you for feedback.

I found the answer also on CCO. The PIX do not make ICMP redirect.

Question resolved.