I am connecting two VLAN's together, for two different companies and am coming up with some complications.
As seen in the visio, the one site has a PIX as the default GW for the network, which I believe to be the main problem. As I remember from previous experience, the PIX 6.3 seems to have problems with Asymm routing.
I have tried solving this problem by using PBR to force the next hop to the PIX rather than the MSFC2, but haven't had any luck.
Any suggestions here? I have total control over everything but the PIX that is pictured, and can also not change the default gw of the clients in VL100.
PIX does not route traffic out the same interface on which the traffic was received on. It doesn't issue ICMP redirects either to the clients.
I can think of three solutions to the problem. Two of the three solutions would involve some configuration change on the PIX or changing the default gw of clients. Since, you stated you have no control over the PIX and you can't change the default gw of VL100 clients that would leave you with the one option (atleast, that's what comes to my mind now) that is configure a static route on VL100 hosts to forward VL18 traffic to the 192.168.10.2 (192.168.10.0 --> 192.168.10.2). Ofcourse, the default gw would remain the same on the hosts.
I had thought of that, but I neglected to say that the users workstations were outside of my control as well. Ideally, in the future, I'll get the vl100 side to put in a router, and have better results.
For now, what I have come up with is NAT on the 6500, which is far from the solution that I desired, but it works.
This document gives several answers on frequently asked questions for PFRv3 channel state behavior.
Q1: What are all the channel operational states from a BR (border role) perspective and what are the rules/conditions to be in each st...
The need was to reach an host inside a LAN through a VPN connection managed by the LAN gateway (Cisco 1921).
The LAN gateway performs NAT and there was a dedicate nat rule for the host i wanted to reach through VPN.
I couldn't connect to the hos...
We have 3 identical switches configured by someone else and would like to claim some of the Gigabit ports(G1/G2/G3/G4) for use on servers. When we try to change the wiring and configuration, we run in to connectivity issues. Attached is a des...