Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Firewall Configuration Issue

Hi,

i am having some issue while configuring PIX firewall in my network.

Please find the network digram for your refernce abt the setup.

As per diagram i am able to reach the firewall using inside interface ip address from remote end Lan.

but there is no traffic passing between outside to inside even if i kept permit ip any any ACL rule.

Can some one send me the basic configuration as per the network diagram.

It will be great help for me.

4 REPLIES

Re: Firewall Configuration Issue

You forgot to attach (I think).

Also post your sanitized configuration.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a008009402f.shtml

Regards

Farrukh

Community Member

Re: Firewall Configuration Issue

Hi,

Thanks for your quick reply,

apology for missing the configuration.

Please find the config & network diagram as attachment.

correct me if i am wrong at any where.

My requirement is outside lan has to access remote server through inside interface with out any nat.

Re: Firewall Configuration Issue

Can you mention any SPECIFIC flow you are trying to test?

e.g. telnet x.x.x.x port

Also your default route statement seems to be wrong:

route inside 0.0.0.0 0.0.0.0 10.62.249.254 1

The interface you mention is 'inside' but the next-hop is actually the FW's outside interface IP??

It should be the following I guess:

route inside 0.0.0.0 0.0.0.0 10.62.248.XX

Also is your inside interface mask correct? Is it supposed to be /27?

Regards

Farrukh

Community Member

Re: Firewall Configuration Issue

Hi,

check your route command, it should be

route inside 10.62.242.0 255.255.255.0 10.62.248.62

also if you have done any Natting, you have to create a NAT exempt rule for the network range you dont want to b Natted.

Let me know for any help you require

119
Views
0
Helpful
4
Replies
CreatePlease to create content