PIX translation I want to understand

Unanswered Question
Dec 7th, 2007
User Badges:

Hello all,


i created a new sub interface on my PIX with the same security level as another one. The option : "enable traffic between two or more interfaces which are configured with the same security levels". on each objects on both interfaces in the NAT on ASDM i see "NO TRANSLATION REQUIRED SAME SECURITY LEVEL COMMUNICATION IS ENABLED" so i don't need to change something but when i create an ACL to allow traffic on one to the other interface ASDM tells me that there is no address tranlastion configured to go to the second interface.

PIX VERSION : 7.0(4) ASDM Version : 5.0(4)


Can you help me ?


Thank you

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
srue Sun, 12/09/2007 - 06:50
User Badges:
  • Blue, 1500 points or more

can you post the relevant portions of your config?


so you have the following command in your config:

same-security-traffic permit inter-interface


if you have that command configured, you don't need acl's to communicate between the two interfaces.

yann.boulet Sun, 12/09/2007 - 07:09
User Badges:

ok so when this option is enabled you mean that traffic is only routed on each interfaces no acl are needed ? but it seems that i have to allow some traffic...


ok i will send to you the configuration

Actions

This Discussion