I took over management of a PIX520 ver. 6.2(2) and there is the following command for each of the networks on the private lan. "static (inside,DMZ) 172.30.0.0 172.30.0.0 netmask 255.255.0.0 0 0". What is this command doing?
It allows the inside networks to access the DMZ without being translated. That is a standard configuration, though some would argue if the DMZ is accessed directly from the Internet then inside networks should be translated to hide your internal numbering schemes.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...