I have a Cisco PIX515 firewall that I'd like to configure and install on my LAN. I have managed a Cisco 3640 router installed on my LAN and prefer to put the firewall behind the router to protect my LAN.
The LAN Gateway is 172.18.1.1 netmask 255.255.255.0 which is the routers fastethernet0/0. Fasethernet0/1 of the router 3640 is 126.96.36.199 netmask 255.255.255.248. My LAN subnet is 172.18.1.0.
I prefer to give my inside IP address to the PIX as 172.18.1.235 netmask 255.255.255.0.
Would you be able to help me with this configuration please ASAP??.
I also have two hosts coming into two servers here which have their internal IP addresses as 172.18.1.152 and 172.18.1.151. These two server external IP addresses are 210.*.*.195 and 188.8.131.52 and both have a netmask of 255.255.255.248.
The configuration you submitted has worked and I can ping the required ip addresses from my LAN.
With regards to the two hosts, 172.18.1.152 aslo has a global ip address of 210.x.x.195 and 172.18.1.151 has a global ip address of 184.108.40.206. The two hosts will be accessing the internal addresses from the 210.x.254.x addresses. These two hosts need to access 172.18.1.151 and 172.18.1.152 for port 1433 (SQL).
Please could you update the access-list, otherwise all the rest of the configuration seems fine for now and will inform you on how I go with it this evening.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :