Routing depends on your network setup/connectivity.
You can have it (static or via OSPF/RIP) to ensure the remote network across another L3 device(s) that connected to PIX is reachable as well.
For simple setup like inside connect to inside switch (flat Vlan), no route is required. Same goes to other interfaces like DMZ, except for outside where you need to have a default or static route to your internet router.
For such simple setup, if you issue command 'sh route', you will see this automated route entry built by PIX.
But if you need to ensure communication from one segment to another, and need to pass through or hosted on another L3 device (i.e internal router), then a route is a must.
For DMZ to inside (or vice-versa), PIX will create the route automatically. Make sure interfaces are up. This happened without having to have address translation between the segment (but translation or no NAT is required later in order to allow hosts in both segments to talk to each other).
But this is for directly connected interface only, not including segment behind L3 device in DMZ or inside segment.
ok but why do we configure route for all inside hosts say like route inside gateway(which is inside int add) is this for communication with a outside world say like l3 devices after the ouside interfaces
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :