Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
447
Views
0
Helpful
3
Replies

PIX-520 outgoing/incoming traffic

ranairfan
Level 1
Level 1

‎02-22-2003 12:27 PM - edited ‎03-09-2019 02:12 AM

In my network I have a PIX-520 with 2 interfaces ( i,e inside and outside ) I am using real ip's on the inside means using them without NAT.

I want my traffic generated from Inside should go to internet via router placed on the outside interface of PIX and the return traffic to come via downlink which is placed on the inside.

Problem is when traffic is passed through PIX a connection is created and PIX assume that the return traffic should also pass through it.

As the retun traffic comes via downlink and not via outside router, there is no internet activity.

Is there anyway to achieve this means no session should be created when outbound traffic pass through PIX. Note that security is not an issue in this scenario.

Labels:
0 Helpful
3 Replies 3

gfullage
Cisco Employee
Cisco Employee

‎02-23-2003 02:55 PM

No, there's no way around this in the PIX, it will always create a session for outgoing traffic, that's its primary function.

0 Helpful

ranairfan
Level 1
Level 1
In response to gfullage

‎02-23-2003 10:34 PM

Thanks a lot

0 Helpful

wolfrikk
Level 3
Level 3

‎02-24-2003 04:07 AM

You can try turning of the stateful monitoring on the PIX:

not fixup protocol http 80

This should turn on the stateful connection monitoring for web traffic. This creates a security hole in the PIX, but it may allow you do accomplish what you are trying to do.

0 Helpful
Customers Also Viewed These Support Documents