Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

fw routing issue

hi I have following fw routing issue on pix 7 fw

route int2 x.x.x.5 255.255.255.255 gtw2 1

route int1 x.x.x.0 255.255.128.0 gtw1 2

I want traffic to x.x.x.5 goes over int2, but no metter what I do, traffic goes over int1. How to solve this?

6 REPLIES

Re: fw routing issue

Hi Dragan

I think issue is about your NAT statements. Please post attach your config, specify desired dest IPs.

Regards

Community Member

Re: fw routing issue

static (int1,inside) x.x.x.0 x.x.x.0 netmask 255.255.128.0

static (int2,inside) x.x.x.5 x.x.x.5 netmask 255.255.255.255

Re: fw routing issue

Dragan,

Try this

static (inside,int1) x.x.x.0 x.x.x.0 netmask 255.255.128.0

static (inside,int2) x.x.x.5 x.x.x.5 netmask 255.255.255.255

If doesnt work, something else in your config might be preventing. Please post your sanitized config if doesnt work.

Community Member

Re: fw routing issue

:-)) why would I do that? x.x.x.0 is behind int1 interface and x.x.x.5 is behind int2 interface.

Community Member

Re: fw routing issue

Hey Guys,

Dont you need to put nat as "static(High security int,Low securiy Int)Low securityIP,HighsecurityIP netmask 255X3" in security levels when it come to static Natting.

This is just a thought.

133
Views
0
Helpful
6
Replies
CreatePlease to create content