Connect to internet through 2 PIX and 2 Routers (complex scenario)
Scenario :- I had installed 2 pix 515 (primary and failover) behind my internet router . My inside network is having 2 WAN routers(with private ip addresses) connecting to 2 different sites(with private ip addresses) . The only way for them to access the internet is to go through current firewall
Requirement:- Now i want to install 2 more pix (primary and failover) behind these 2 wan routers to protect my inside netwok . So they can access only servers in their own dmz and connect to the internet
Before configuring anything on these new PIX i wana confirm the steps with you which i will perform .
-I have to give 2 static routes to these 2 WAN routers so inside users can connect to these 2 sites
-Have to disable NAT
-configure static for dmz servers and apply access list to it .
Please tell me what other steps i need in order to configure the new pix and please tell me how should i allow both the WAN site user to by pass both the PIX firewalls in order to use the internet .Required topology is like this :-
Users-Wan router(inside network)-Pix Firewall(inside network)-Pix Firewall(connecting to internet router)-Internet router . So overall there are 4 hops from WAN site users to internet .
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...