I have two pix 515e firewalls running v7.2(3). They have a similar setup. On one pix outside has a small /29 ip block which routes a /25 and a /27. I've setup two static rules to allow traffic from a lower interface to higher levels. This works no problem. On the other pix however the setup is pretty much the same, with two exceptions. The ip block on outside is /30 And I making use of several VLANs. Strangely enough I don't need to setup required static rules for this to work. No nat is used I am using public ip addresses.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...