Hi guys, I have a test PIX 515 here and I have just configured a logical interface as a VLAN. The switch can see the correct VLAN, and the pix can ping one host on the new VLAN, and vice versa, so the VLAN is operational.
I am sitting behind an interface called ABC and this is numbered 192.168.1.0/24 and I am trying to access the network listed above on 10.0.31.248/29
I believe I need to create 2 static entries, nat entries for both and then create an access-list for traffic, applying the list via an access-group. Is this correct, or am I missing something here?
as far as the static entries go, are these something like:
static(abc,vlan166)192.168.1.10 192.168.1.10 netmask 255.255.255.255
For nat do I just add:
nat (abc) 1 0 0
nat (abc) 0 access-list nonatabc