Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

PIX "transparent" configuration

For test purposes I've to configure a PIX-515 6.2(2) completely "transparent". Thats means, no NAT and no access restrictions (all inbound and outbound traffic allowed) should be configured on the firewall. Does anyone already used this, or what's the easiest configuration? My main problem is how to allow all outbound traffic to the inside network.

Thanks' in advance.

Daniel

  • Other Network Infrastructure Subjects
1 ACCEPTED SOLUTION

Accepted Solutions

Re: PIX "transparent" configuration

Outbound - traffic going from inside to outside.

Inbound - traffic coming from outside to inside.

By def. PIX allows all outbound traffic. If you want to disable nat, use a NAT id of 0.

nat (inside) 0 0.0.0.0 0.0.0.0 0 0

To allow inbound traffic you will have to use conduits or access-lists, which permit all traffic. and apply it on the outside interface, as inbound.

conduit permit ip any any

1 REPLY

Re: PIX "transparent" configuration

Outbound - traffic going from inside to outside.

Inbound - traffic coming from outside to inside.

By def. PIX allows all outbound traffic. If you want to disable nat, use a NAT id of 0.

nat (inside) 0 0.0.0.0 0.0.0.0 0 0

To allow inbound traffic you will have to use conduits or access-lists, which permit all traffic. and apply it on the outside interface, as inbound.

conduit permit ip any any

115
Views
0
Helpful
1
Replies
This widget could not be displayed.