Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

PIX as a router

Hello Guys need your guidance!

Is it possible to use the PIX 515E as a router? See the link below for the network topology.

http://img259.imageshack.us/img259/2831/pixasarouterns1.jpg

Referring to the network topology. The client want that the two subnets (192.168.1.0/24 and 192.168.2.0/24) can access each other. In addition, both subnets be able to access the web.

Please rate replies and mark question as "answered" if applicable.
1 ACCEPTED SOLUTION

Accepted Solutions
Hall of Fame Super Blue

Re: PIX as a router

It would be a lot easier if it is version 7.x

What you can do is make the 2 interfaces that connect to your internal subnets the same security level. Then add the following command to your config

same-security-traffic permit inter-interface

This will allow traffic to flow freely between those 2 subnets without access-lists or NAT statements.

HTH

Jon

4 REPLIES
Hall of Fame Super Blue

Re: PIX as a router

Hi

Yes you can do this. Presumably you have 3 interfaces on the pix firewall ?

How you set this up depends on what version of code you are running on your pix ie. v6.x or v7.x.

Which version are you running on your pix ?

Jon

Re: PIX as a router

It has 6 interfaces. I still dont know the version of the Pix 515E however im sure it is 7.x coz it was bought last year 2006.

By the way each subnet contains 100+ users.

Please rate replies and mark question as "answered" if applicable.
Hall of Fame Super Blue

Re: PIX as a router

It would be a lot easier if it is version 7.x

What you can do is make the 2 interfaces that connect to your internal subnets the same security level. Then add the following command to your config

same-security-traffic permit inter-interface

This will allow traffic to flow freely between those 2 subnets without access-lists or NAT statements.

HTH

Jon

Re: PIX as a router

thank you very much for your replies Jon!

Please rate replies and mark question as "answered" if applicable.
101
Views
0
Helpful
4
Replies