06-27-2002 03:58 AM - edited 02-20-2020 10:07 PM
Is there any way to allow native SNA traffic ( IEEE802.2 LAN) to pass through
a PIX firewall ?
If so, what is the PIX config ?
06-27-2002 07:37 AM
yes you can allow this by openning tow ports 2065 and 2067 tcp and udp.
06-27-2002 07:41 AM
conf pix
access-list acl_in permit tcp x.x.x.x x.x.x.x any eq 2065
access-list acl_in permit udp x.x.x.x x.x.x.x any eq 2065
access-list acl_in permit tcp x.x.x.x x.x.x.x any eq 2067
access-list acl_in permit udp x.x.x.x x.x.x.x any eq 2067
access-group acl_in in interface inside
06-27-2002 05:20 PM
I think you are referring to the DLSw traffic, once encapsulated in to TCP . But, what I need to do is, without any encapsulation, to pass the NATIVE SNA traffic on LAN through the firewall. I bilieve that there should be some kind of bridging. Any ideas ?
06-27-2002 06:53 PM
I do not believe this is possible. The PIX is a router rather than a bridge.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: