Greetings everyone.... Here is my physical topology.
Internet-------2611 Router -------- PIX 525 ------- 3640 Router --------- Switch to LAN
I have the routers set up and they function perfect without the PIX. When I connect them to the PIX I cannot ping the directly connected interfaces or the outside world. I am new to setting up the PIX and I believe I need a conduit to allow access from the Inside to reach the internet. If this is the case, can anyone suggest the console commands.
The PIX will need a default route statement to start off with pointing it to the 2611:
route (outside) 0.0.0.0 0.0.0.0
Then to go from inside to outside, you need a nat/global pair. The simplest way to get you going is this:
nat (inside) 1 0.0.0.0 0.0.0.0
global (outside) 1 interface
This NAT's all outbound traffic to the IP address of the outside interface of the PIX. You can change these values if you like, I would suggest making the nat statement just cover your internal network(s) and nothing else.
Keep in mind you can't ping the outside interface of the PIX from the inside network and vice versa. You should be able to ping the inside inteface from the inside network though, so if you can't you've got some connectivity/routing problems.
I will give that a shot guys- also one other question. The ip addresses for the pix are on the same network 65.160.29.x, netmask 255.255.255.248 but for some reason i can't give the ip address to the inside interface. It keeps saying cannot remove route. Any ideas?
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :