PIX and PBR

Unanswered Question
Feb 16th, 2007

Does PIX allow PBR, like routers allow?

Thanks

Alan

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
daviddtran Fri, 02/16/2007 - 04:44

short answer is no. Something like this the Pix

can NOT do:

access-list list 199 permit icmp any any echo

access-list list 199 permit icmp any any echo-reply

route-map block_nachi permit 10

match ip address 199

match length 92 92

set interface null0

interface f0/0

no ip unreachable

ip route-cache policy

ip policy route-map block_nachi

stupid craps like this the Pix can NOT do.

If you need features such as PBR or

source-based routing, go with Juniper or

Nokia/Checkpoint firewalls appliances. Those

vendors will let you do that, not Cisco Pix.

David

CCIE Security

Actions

This Discussion