Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

pix 7.1 outside to inside access


I need configuration help for PIX 525 with PIX OS 7.1

My scenario is like this:

Firewall inside network /24

Firewall inside interface IP

Firewall outside network

Firewall outside interface IP

I have to permit hosts to 20 to access anything in the inside network.

Can somebody help in configuring this.




Re: pix 7.1 outside to inside access

hi sivakondalarao,

try posting your config to better understand you setup, rest you can try this for the desired results

create an access-list and apply it to your outside interface

"access-list acl_out permit tcp any host"

apply to interface

"access-group acl_out in interface outside"

create a static for outside ip to commnicate with inside host

"static (inside,outside) tcp 192.168.1.x netmask"

also create an access-list and apply it to our inside interface

"access-list acl_inside permit ip any any"

apply to interface

"access-group acl_inside in interface inside"

hope this helps

Re: pix 7.1 outside to inside access

Hi can can:

1.- Create a static translation for all the internal hosts

static (inside,outside) netmask

2.- Create an access-list for the outside network to initiate traffic to the inside hosts

access-list Outside_In extended permit ip

access-group Outside_In in interface Outside

3.- make sure your access-list applied to the Internal interface allow outbound traffic i.e

access-list Inside_Out extended permit ip any

access-group Inside_Out in interface Inside

I hope it helps ... please rate it if it does