Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1957
Views
0
Helpful
1
Replies

the problems pix 520 with multiple network interfaces.

litao-ma
Level 1
Level 1

‎07-12-2001 12:33 AM - edited ‎02-20-2020 09:48 PM

I have encounter a security access problem.One PIX 520 with four NICs.It has a enet interface with security value 10 and a hbnet interface with security value 20 besides the inside interface with security value 100 and the outside interface with secuirty value 0.i find the problem after i make a ACL policy configuration .below is what the command:

"outbound 1 deny 0.0.0.0

outbound 1 except 192.168.0.100 tcp

outbound 1 permit 210.25.0.0 255.255.0.0 tcp ;the address space 210.25.0.0 is in the ENET .

apply (inside) 1 outgoing_dest "

Last,the soruce address host 192.168.0.100 can access the outside network,but unfortunated,it cann't access all the destination in the ENET.

The Pix software version is 4.2(3).

So what is the reason?

Thank you very much.

0 Helpful
1 Reply 1

wdrootz
Level 4
Level 4

‎07-18-2001 08:50 AM

Never put a deny and a permit in the same acl, Break them apart into two separate lists. Also, 4.2(3) is pretty old code.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card