Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

LLC2 traffic

I need install one PIX 501 in a net that has one SNA server. The outside interface of the PIX is connected in interface e0 of the router .

Is it possible the llc2 packets to pass for firewall and I continue protecting the IP traffic?

If not, I thought about only connecting another interface of router (e1) in the internal net for only the traffic llc2 (don't passing by the firewall)but I do not know as to configure the interface of router.

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: LLC2 traffic

The PIX only handles IP traffic, so unless tyou can encapsulate your LLC traffic in IP, the PIX won't touch it. I guess you could bypass the PIX and connect an LLC2-only interface on the router into your inside network, depends on how secure you want to be. Make sure you don't configure an IP address on this router interface, otherwise you'll run the risk of someone getting in around the PIX security.

1 REPLY
Cisco Employee

Re: LLC2 traffic

The PIX only handles IP traffic, so unless tyou can encapsulate your LLC traffic in IP, the PIX won't touch it. I guess you could bypass the PIX and connect an LLC2-only interface on the router into your inside network, depends on how secure you want to be. Make sure you don't configure an IP address on this router interface, otherwise you'll run the risk of someone getting in around the PIX security.

91
Views
0
Helpful
1
Replies
CreatePlease to create content