Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
291
Views
0
Helpful
1
Replies

Separate 2 internal networks

cmuench
Level 1
Level 1

‎05-24-2010 11:23 PM - edited ‎03-11-2019 10:50 AM

Hello,

I have the following network setup on my pix.

Interface 0 is internet --static ip

Interface 1 is internal  10.1.1.0 is regular computers.

                                 vlan3 -- 10.1.3.0 is public internet

Also we have 2 dhcp scopes setup, one for each network

Its all working great except for one thing.

when someone is on the public I don't want them to be able to get to anything on the regular 10.1.1.x network.

I have attached my current running config.

Also this is a pix 515 running 804

Chris

Labels:
66927-running-config.cfg.zip
0 Helpful
1 Reply 1

Jennifer Halim
Cisco Employee
Cisco Employee

‎05-24-2010 11:57 PM

Base on your configuration, the public subnet 10.1.3.0/24 is not even configured on the PIX firewall. It is directly connected on your internal switch/router, therefore, traffic between 10.1.1.0/24 and 10.1.3.0/24 can reach each other. If you would like the public subnet to be segragated from the inside network, you need to configure a public interface on the PIX firewall and it needs to be the default gateway for that subnet.

Hope that helps.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card