I have some old PIX's that I am working with and they have two default routes, one pointing to inside and the other outside - they seem to be working fine but I was wondering how this actually worked and do later versions support this?
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(9) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(85) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,547) -
Cisco Bugs
(33) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(140) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,165) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(11) -
Cisco Secure Firewall Management Center (FMC)
(60) -
Cisco Secure Firewall Threat Defense (FTD)
(85) -
Cisco Security Cloud Control
(2) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(18) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(44) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(259) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(27) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,573) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(321) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(92) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,564) -
NGIPS
(1,873) -
Online Tools and Resources
(1) -
Open Source and Open Standards
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Automation Analytics Topics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(5) -
Other Firewalls
(1) -
Other IP Telephony
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,774) -
Other Networking
(9) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(631) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(25) -
VPN and AnyConnect
(1) -
Vulnerability Management
(43) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Hi, I'm trying to enroll my PIX for a certificate.Getting the CA certificate with 'ca authenticate...' works fine and 'show ca cert' shows the CA certificate.When I try to get a CRL och enroll for a certificate however the CA sends back the message b...
Hi all,Is it possible to replciate the configuration of a PIX failover bundle across a wan link to another failover bundle? The idea is to set up two exits out of our network. While traffic can be re-routed in case the primary gateway fails, our conc...
On a DMZ interface what would be an access list equivalent to the implicit outbound rule? Would it be something likeaccess-list acl_dmz1 permit ip any anyaccess-group acl_dmz1 in interface dmz1I would like to add a restriction to the interface but st...
We're having an issue where we can't send mail to ourselves. Mail will successfully come from outside sources to mail.domainname.com but if we try it internally it won't allow the traffic through. If I try to telnet to port 25 from a machine on the...
When a user has established a VPN connection to a PIX using the the Microsoft PPTP client, does he still have access to Internet?If we use the Cisco VPN client to established a VPN connection to a PIX, we have to enable Split-tunneling to be able to ...
Hi All,What is the normal effect on routing tables and routing protocol advertisements when directly connected interfaces go down ?Imagine a 506e with the following config...Inside - 195.105.100.0/24Outside - 192.168.0.1/30A host on the inside on add...
Solaris server is replying with icmp unreachable when cisco device tries to send syslog message on port 514.I can see the syslog entry come from the switch and the server is replying with an icmp unreachable msg. I have the syslog collecter running, ...
My Pix 515E model tears down my TCP connections in 4 in a very short about 4 seconds even though the timeout conn half-closed is 0:10:00 (10 minutes). How can I prevent the Pix box from tearing down my tcp connnections so fast? Below are my timeout s...
hiWhat is the MIB to pull the temperature off a 2651XM and a 3745XMthanks
Hi,Could anyone shed some light on the following problem I am having?I have set up a site-to-site VPN, and am able to have traffic encrypted/decrypted perfectly when protecting ALL IP traffic between local and remote hosts. My problem lies when I wan...
What is the difference between the hardware output queue and software output queue?sh int e0 shows my hardware output queue stats constantly at 128/128 but the software one is always 0.
Interestingly today was going along so good when just as I was about to leave to go home a problem arrived in my inbox - figures. The problem has to do with email. well you ask..this is a firewall forum not about microsoft exchange. well let me finis...
Hi I have configured a Dual Hub - Dual DMVPN Layout and want to use one single DHCP sever on the central site. I have configured "ip helper-address addr_of_dhcp_srv" on the spokes and I can se in my debug that I receive a broadcast bootp request from...
Hi Guys, How are you?I have some problem with PIX 506E NAT’s configurations. I saw that to allow traffic from lower security interface to higher security interface I need to create a STATIC NAT entry or use a NAT EXEMPTION based on ACL. But I have so...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 10-07-2025 01:04 AM | ||
| 09-30-2025 03:35 AM | ||
| 09-26-2025 12:33 AM | ||
| 09-24-2025 06:11 PM | ||
| 09-23-2025 04:54 AM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 12 | |
| 5 | |
| 2 | |
| 1 | |
| 1 |
