I have to setup a MPLS VPN hub and spoke configuration where all traffic from spoke sites must go through the hub site before going to any other spoke. At this hub site, I need to send the traffic through a PIX to check it against some security rules.
The problem is the following : for a given TCP session, the SYN packet will come on the inside interface of the PIX and will go out by the outside interface. BUT the SYN/ACK will do exactly the same : coming on the inside and going out by the outside interface. In other words, all the traffic will always go through the PIX in the same direction.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...