Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Very General PIX config

I'm having problems w/ a Pix that isn't able to be ping'ed. If I ping from the PIX(515) to the device it isn't a problem but when I try to originate the ping from my laptop I'm having problems. I'm trying to setup a very simple firewall that allows all traffic to come through the device in both directions, then I want to increase security once the basic functionality is there. So what is the best way to go ahead and do this? I don't have my book yet and the online documentation isn't great. Thanks.

1 REPLY
New Member

Re: Very General PIX config

PIX Initial Configuration:-

pixfirewall(config)# hostname PIX1

PIX1(config)# enable password enable-password-here

PIX1(config)# passwd telnet-password-here

PIX1(config )# write mem

Interface Security:-

PIX1(config )# nameif ethernet0 outside sec0

PIX1(config )# nameif ethernet1 inside sec100

Interface Speed:-

PIX1(config )# interface ethernet0 100full

PIX1(config )# interface ethernet1 100full

IP Address Config:-

PIX1(config)#ip address inside

PIX1(config)#ip address outside

PIX1(confi)#ssh inside

PIX1(config)#global (outside) 1 netmask

PIX1(config)#nat (inside) 1 0 0

PIX1(config)#access-list acl-per permit ip any any

PIX1(config)#access-group acl-per in interface outside

PIX1(config)#access-group acl-per in interface inside

PIX1(config)#route inside 1

PIX1(config)#route outside 0 0 1

PIX1#wr

Connwect your laptop to the inside interface. Assign IP address to your laptop of inside subnet.

It should work.

Hope That Helps.

Regards,

Suresh Jain

123
Views
0
Helpful
1
Replies