Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have three networks on my PIX, outside, inside and a secury one in the middle.I have PIX OS 7.x installed and I can VPN fine to inside network and I can also use the PIX to access the internet from the VPN clients.My only problem is the "secure" ne...
Hi,I have PIX running and on my clients I have the Cisco VPN client installed. I can access all my internal networks fine (inside & dmz), but when I try to access any outside network I get a "No route to <outside ip> from <vpn client ip>"What can I d...
Hi,I have PIX 515e with OS 6.3(4) and I have one outside and two inside networks.right now I have these settings (config excerpt):...nameif ethernet0 outside security0nameif ethernet1 inside security100nameif ethernet2 half security50...access-list i...
Hi,I have PIX 515e with OS 6.3(4) and I have one outside and two inside networks.right now I have these settings (config excerpt):...nameif ethernet0 outside security0nameif ethernet1 inside security100nameif ethernet2 half security50...access-list i...
No, I found the error. I uses a wrong host, which gateway was set to my current firewall and not to the pix. so the packages sent to this host were never returned, because the route on this boxes is set different. Sorry for the noise here.
There is no 7 build to see when I login on that page.All I see is this note: NOTE:There are currently no files for this type.Thought there are some links for upgrade notes to v7
But this is extremly difficult I think. Normaly the pix is used to access the internet. I even don't know if I can make a source routing on the PIX.Say if traffic comes in from the VPN device, route it to this address instead if it doesn't match one ...
I already tried this, but this just half solves the issue. When I do this, the half side sees the inside IPs as is (192. ...) and vica versa.But I would prefer that they both get masqueraded, so servers in the half side see the IP from the interface ...
