Same network one PIX

Unanswered Question
May 1st, 2007

SEGMENT LAN

192.168.0.0 255.255.255.0

192.168.0.10 192.168.0.20

PROXYI PROXYII

192.168.190.10 192.168.190.20

192.168.190.250

PIX 506

INTERNET

I would like that the traffic crossing by 192.168.0.10 Internet returns towards 192.168.0.10

Example routes inside 0.0.0.0 0.0.0 192.168.0.10!

I would like that the traffic crossing by 192.168.0.20 Internet returns towards 192.168.0.20

Example routes inside 0.0.0.0 0.0.0 192.168.0.20!

Which is the best configuration

Thank you

Alain

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jon Marshall Tue, 05/01/2007 - 03:06

Hi Alain

Your diagram has come out a little bit funny but if i understand correctly you need static statements for your 2 proxy servers

ie

static (inside,outside) 192.168.90.10 192.168.0.10 netmask 255.255.255.0

static (inside,outside) 192.168.90.20 192.168.0.20 netmask 255.255.255.0

You don't need individual routes for your internal proxy addresses. If the pix internal interface is not on the 192.168.0.0/24 network then you just need one route

route inside 192.168.0.0 255.255.255.0 "next hop"

Hope i have understood correctly. If not please let me know.

Jon

Actions

This Discussion