So is it correct if i use for Router

E0=192.168.10.10

Dialer1 = ip address negotiated

and for PIX

E0= 192.168.10.8

E1= 192.168.10.7

The inside and the outside ip address of the pix should be on a different network.

If your inside network is 192.168.10.0 mask 255.255.255.0 then it is not possible to use also an ip address in the 192.168.10.0 network for the outside interface.

Maybe you could use a different network for your LAN, for example 192.168.11.0 netmask 255.255.255.0

Please remember to add a default route on the pix that points to the router:

'route outside 0.0.0.0 0.0.0.0 192.168.10.10'

Kind Regards,

Tom

so my pix config will be like

E0 = 192.168.11.1

E1 = 192.168.10.8

And my router 801

E0 = 192.168.10.10

It means that my router is on another network & PIX on another network. It is possible or i have to bring my router & pix in 192.168.11.0 network

this will be the scenario

LAN(192.168.11.x)----->(PIX E0 or INSIDE<192.168.11.1> --PIX E1 or OUTSIDE<192.168.10.8>)----------->Router(192.168.10.10)-----------------> Internet

Hope this is clear ?

ramesh

Hi,

I hope everything is clear now? If not, please ask :-)

I just want to add this to the conversation:

by default the eth0 is the outside interface of the pix en eth1 is the internal interface.

It is possible to switch eth0 and eth1 so that eth0 becomes the inside interface eth1 the outside interface. Just make sure that the outside interface has the lowest security level (=0) and the inside interface has the highest security level set (=100).

Kind Regards,

Tom