Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PIX-520 outgoing/incoming traffic

In my network I have a PIX-520 with 2 interfaces ( i,e inside and outside ) I am using real ip's on the inside means using them without NAT.

I want my traffic generated from Inside should go to internet via router placed on the outside interface of PIX and the return traffic to come via downlink which is placed on the inside.

Problem is when traffic is passed through PIX a connection is created and PIX assume that the return traffic should also pass through it.

As the retun traffic comes via downlink and not via outside router, there is no internet activity.

Is there anyway to achieve this means no session should be created when outbound traffic pass through PIX. Note that security is not an issue in this scenario.

Cisco Employee

Re: PIX-520 outgoing/incoming traffic

No, there's no way around this in the PIX, it will always create a session for outgoing traffic, that's its primary function.

New Member

Re: PIX-520 outgoing/incoming traffic

Thanks a lot

New Member

Re: PIX-520 outgoing/incoming traffic

You can try turning of the stateful monitoring on the PIX:

not fixup protocol http 80

This should turn on the stateful connection monitoring for web traffic. This creates a security hole in the PIX, but it may allow you do accomplish what you are trying to do.

CreatePlease login to create content