I have a pix 515 with 3 interfaces inside, outside and intf2. My goal is to allow my internal network to access both Intranet and Internet web sites in a secure way.
inside (ethernet 1) is directly connected to the internal network where all hostsreside:
ip 172.16.0.1/24 (this is hosts' default gateway)
outside (ethernet 0) is directly connected to the internet router
intf2 (ethernet 2) is directly connected to the intranet router
Both intranet and internet routers are configured with only one static default route (no routing protocols). Mine is a stub network.
The pix has a default route to the internet router (route outside 0.0.0.0 0.0.0.0 10.0.0.1) and a couple of static routes to the intranet router (route intf2 10.22.0.0/16 and 10.23.0.0/16 which cover all the intranet)
nat (inside) 1 0 0
global (outside) 10.0.0.254 255.255.255.0
global (intf2) 10.23.214.202
Clients on the internal network can access Internet web sites but not intranet.
If i ping 10.22.x.x and 10.23.0.0 from pix console i get responses, if i try to ping the same networks from host on the internal network i do not receive any response.
It seems like the pix can get intranet sites but doesn't allow clients to send and receive packets to the same sites.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :