Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Configuring PIX 501 with a single internal network

I have a PIX 501 i need to configure and need some help. The address of my inside netork is 192.168.0.0 and the outside will be 192.168.1.0. I have been able to assign ip address to the inside interface as 192.168.0.35 and the outside interface as 192.168.1.1. Now i have a pc with the address 192.168.1.26 on the outside which i need my users from the inside (192.168.0.0) to connect to. How do i need to configure nat and routes for this to be able to work. I'm new at this. Thanks!

7 REPLIES

Re: Configuring PIX 501 with a single internal network

To enable NAT,

nat (inside) 1 0.0.0.0 0.0.0.0

global (outside) 1 interface

If you want to get beyond the 192.168.1.0 network you will need to know the gateway for that network. The route statement to add for example...

route outside 0.0.0.0 0.0.0.0 192.168.1.254

HTH and please rate.

New Member

Re: Configuring PIX 501 with a single internal network

I tried that and now i'm trying to ping a machine on the outside from the inside and can't do it. How can i fix this?

New Member

Re: Configuring PIX 501 with a single internal network

You need access-list on outside interface to allow icmp echo-reply.

access-list 101 permit icmp 192.168.1.0 255.255.255.0 192.168.0.0 255.255.255.0 echo-reply

access-group 101 in interface outside

New Member

Re: Configuring PIX 501 with a single internal network

I tried that and still get host unreachable, either way. Sorry but i'm new at this, what can i do now.

New Member

Re: Configuring PIX 501 with a single internal network

Post pix config

New Member

Re: Configuring PIX 501 with a single internal network

i've attached the pic cfg.

New Member

Re: Configuring PIX 501 with a single internal network

Do you have any access-list configure on Inside Interface..

I am not able to access your config...

CK

320
Views
0
Helpful
7
Replies