Hi All,

I have configured two contexts on PIX, i.e. one for Admin and one for Client. I have configured two sub interfaces and assigned VLANs to use for inside networks whereas i have shared outside interface between two contexts.

Now i am confuse about the NATing part for this design.I am able to access the internet from admin context. However not able to telnet my ISP router from my network. I have assigned tow ip networks to the inside interface of the ISP rotuers i.e. 10.10.10.X and public ip range. Now if i telent on public ip it works where as if i telent on 10.10.10.X network it won't work. Also my radius is stop authenticating on the router. i am able to ping raidus server from the router.

Could you please help me to solve this issue.

Adm Ctx:

interface Inside_adm

nameif inside

security-level 100

ip address 10.126.1.17 255.255.255.0

!

interface outside_adm

nameif outside

security-level 0

ip address 10.10.10.201 255.255.255.0

same-security-traffic permit intra-interface

access-list outside_access_in extended permit ip any any

access-list outside_access_in extended permit icmp any any

access-list inside_access_in extended permit ip any any

i have not using NAT on PIX.

ISP router:

interface FastEthernet0/0

ip address 203.88.99.101 255.255.255.240 secondary

ip address 10.10.10.4 255.255.255.0

ip nat inside

ip nat pool Test XXXX netmask 255.255.255.240

ip nat inside source list 1 pool Test overload

Ip rotue 10.126.1.0 255.255.255.0 10.10.10.200