Hi! I just configured my Cisco 837 to connect to the internet. The internet services we are using are dynamic ip, so the cisco 837 was also configured with dynamic ip and the inside nat was configured with dhcp.
I got a PIX 515E now, and i want to connect my cisco 837 to my new PIX 515E. I'm new in configuring firewall. Anyone has any advise on the steps to follow or working sample config for the firewall?
1.- To make sure the users ar using the internal interface of the PIX as default gateway for outbound internet. Lets say the inside interface IP is x.x.x.x so your users need to have x.x.x.x as their default gateway.
2.- You need to use a cross over cable to connect the PIX with the 837.
3.- Configure the Ip address of the 837 router which faces teh PIX as static .. example 10.10.10.1 255.255.255.0 Configure the interface of the PIX which is connected to the 837 as 10.10.10.2 255.255.255.0. Let's call this interface "outside"
4.- You need to configure the PIX to allow internet access from your hosts
access-list Internet_Outbound permit tcp any eq www
access-group Internet_Outbound in interface inside
5.- You need to enable PAT
nat (inside) 1 access-list Internet_Outbound
global (outside) 1 interface
6.- make sure your pix has a default route pointing to 10.10.10.1 ( The ADSL router ).
route outside 0.0.0.0 0.0.0.0 10.10.10.1
7.- Make sure your 837 router has a route for your internal subnet.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :