Ok, need some help talking to group of hosts on a lower security interface
from a higher one.
For example.
I have a fileserver on 192.168.200.0/24 on pix interface 3 security100. I
want to be able to speak at will to another fileserver 192.168.100.0/24 on
pix interface 2 security 90. The name of int 3 security 100 is inside, and
the name of the int 2 security 90 is companynet.
I setup an access list, used it with nat (inside) 0. The access list gets
hits, but the I can't ping thru to the lower security subnet. What am I
doing wrong?
nameif ethernet2 comanynet security90
nameif ethernet3 inside security100
access-list inside2comany permit ip 192.168.200.0 255.255.255.0
192.168.100.0 255.255.255.0
nat (inside) 0 access-list inside2comany
route inside 192.168.200.0 255.255.255.0 192.168.100.1
conduit permit icmp any any
Thanks in advance,
Michael Snyder
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=1429&t=1429
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
