Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PIX route statments

Hi There,

I was implementing a Pix 506E ver 6.3(3) the other night and ran into a few challenges that I was hoping someone could help me with.

To set up the topology: we have two T-1s coming in that land on a Cisco 25XX and then hand off via E0 to the PIX. Both T-1s are private lines that directly connect to customers routers. Networks 10.29.0.0 and 10.31.0.0. Inside the PIX we are running 192 and 172 networks and have disabled NAT&PAT due to the need for each others hosts to directly connect between the different companies servers for billing purposes etc. For my route statements I only had the default route outside and was not able to have the hosts get to the outside networks but after adding a command of route outside 10.0.0.0 255.0.0.0 172.20.50.1<--E0 IP on router connected to E0 of PIX I was able to get to those remote networks. Why did I have to put in any route commands for traffic going out of the PIX...is this because I've turned of NAT?

OK second question. I want all of my hosts to be able to go out of the PIX without natting them so then I just need to put in these commands correct?

static (inside,outside) 172.20.0.0 172.20.0.0 netmask 255.255.0.0 0 0

static (inside,outside) 192.0.0.0 192.0.0.0 netmask 255.0.0.0 0 0

Any feedback is always appreciated. thanks.

1 REPLY
New Member

Re: PIX route statments

You can also use nat 0 to allow you inside hosts to exit the pix using their real IP's.

nat (inside) 0 192.0.0.0 255.0.0.0

85
Views
0
Helpful
1
Replies
CreatePlease login to create content