I have a Cisco Pix 520E . The problem with this is that whever i try to ping a local server from another local server, the hardware address is that of the PIX firewall and finally the ping doesnt work.. This is leading to many server-to-server communication issues for me. Both the servers are behind the same pix firewall. When i take the arp of these servers and see, the servers will show that the other server has the ARP of the pix firewall. Do I need to do any setting on the pix so that the local servers communicate with each other smoothly?
By default, the PIX Firewall responds to ARP requests directed at the PIX Firewall's interface IP addresses as well as to ARP requests for any static or global address defined on the PIX Firewall interface (which are proxy ARP requests).
The sysopt noproxyarp if_name command lets you disable proxy ARP request responses on a PIX Firewall interface. However, this command does not disable regular (non-proxy) ARP request responses on the PIX Firewall interface itself. Consequently, if you use the sysopt noproxyarp if_name command, the PIX Firewall no longer responds to ARP requests for the addresses in the static, global, and nat 0 commands for that interface but does respond to ARP requests for its interface IP addresses.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...