PIX won't forward multicast packets as it's a pretty big security risk.. the
way around this for OSPF is to treat the segment with the PIX as a
Non-broadcast network.. OSPF won't try to send updates via the 224.0.0.4
multicast address on Non-broadcast networks, instread you use the "neighor"
command on each router to specify the IP address of an OSPF neighbor to
establish adjacencies with... Then on the PIX you can set your policies to
permit traffic to and from each of the routers interfaces through the PIX
itself... Hope that helps..
Russ..
""Nabil Fares"" <[EMAIL PROTECTED]> wrote in message
000e01c0691a$0be950c0$[EMAIL PROTECTED]">news:000e01c0691a$0be950c0$[EMAIL PROTECTED]...
> Greetings all,
>
> Please forgive me if am asking the same question over and over.
>
> What is the best way to configure the PIX to pass OSPF (Multicast
traffic).
> I'm adding PIX firewall to regional sites and need to pass OSPF.
>
> Cloud-----------------router----------PIX-------------router
>
> thanks,
>
> Nabil
>
> _________________________________
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
