Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Connectivity issue with network 2 hops away from PIX

We have a network (192.x.x.x.) sitting 2 hops away from the PIX firewall. We have created a static statement (inside, DMZ) 192.x.x.1 192.x.x.1 on the PIX allowing this network access to the DMZ ...and have added conduit statements to allow traffic through from the DMZ to the 192.9.x.x.x network for telnet. We have however not added a route inside statement to that network on the PIX how does the PIX know to send traffic for that network via the inside interface...Is the route inside statement needed? We want bidirectional traffic - telnet for instance from 192.x.x.x to DMZ

192..x.x.x----->7206----->7120----------->PIX-----DMZ

Thanks for the help!!

1 REPLY
New Member

Re: Connectivity issue with network 2 hops away from PIX

Hi -

You will need to add the 'route inside' statement to point the PIX to the router between the PIX and the 192. segment...

Allowing the static was good, but don't forget to change the NAT statement, if you want the 192. to be able to get out... (unless you NAT (inside) 1 0.0.0.0 0.0.0.0).

86
Views
0
Helpful
1
Replies
CreatePlease to create content