Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Silver

Design Question: RIP Routes in PIX, fiterable?

Hi All,

Our PIX connects to a two Outside routers that belong to Company C. Two routers of Company C just provide redundant paths. All company C's routers, including the two that connect to our PIX, run EIGRP.

I have following questions:

1. Can we use RIP on PIX and those two Outside routers to just inform PIX of the available route(s) or path ?

2. How can I protect my PIX routing table? I do not want those routers to send me wrong or un-related routes? Can I configure PIX only to accept x.y.z.0/24 or less and nothing else from those routers? In other words, how do we implement prefix-lists in PIX?

3. Is there any other way to do this?

Thanks.

1 REPLY

Re: Design Question: RIP Routes in PIX, fiterable?

Remember the PIX isn't a router.

1. You can enable RIP on the PIX to receive/send routes. The PIX cannot pass RIP updates between interfaces. See link: http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_62/cmdref/mr.htm#xtocid18

2. You can enable authentication on RIP. You can't enable route filtering.

3a. Put you own router or layer 3 switch between the PIX and company C. Do routing and route filtering on that device(s).

3b.Or have company C run MHSRP (depending on their router type).

Hope it helps.

Steve

95
Views
0
Helpful
1
Replies
CreatePlease to create content