Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Same network one PIX

SEGMENT LAN

192.168.0.0 255.255.255.0

192.168.0.10 192.168.0.20

PROXYI PROXYII

192.168.190.10 192.168.190.20

192.168.190.250

PIX 506

INTERNET

I would like that the traffic crossing by 192.168.0.10 Internet returns towards 192.168.0.10

Example routes inside 0.0.0.0 0.0.0 192.168.0.10!

I would like that the traffic crossing by 192.168.0.20 Internet returns towards 192.168.0.20

Example routes inside 0.0.0.0 0.0.0 192.168.0.20!

Which is the best configuration

Thank you

Alain

1 REPLY
Hall of Fame Super Blue

Re: Same network one PIX

Hi Alain

Your diagram has come out a little bit funny but if i understand correctly you need static statements for your 2 proxy servers

ie

static (inside,outside) 192.168.90.10 192.168.0.10 netmask 255.255.255.0

static (inside,outside) 192.168.90.20 192.168.0.20 netmask 255.255.255.0

You don't need individual routes for your internal proxy addresses. If the pix internal interface is not on the 192.168.0.0/24 network then you just need one route

route inside 192.168.0.0 255.255.255.0 "next hop"

Hope i have understood correctly. If not please let me know.

Jon

177
Views
0
Helpful
1
Replies