Oh yeah...didn't see this part for my last reply. You're going to have a
hard time getting it to work this way. I've never tried using passive RIP
to see if it would learn the path..anyone else tried it?
Since you can't put more than one IP on a PIX interface it would need a
gateway to the other internal network to do the routing for you. In other
words..the other guys reply was correct.
Allen
----- Original Message -----
From: "Farhan Ahmed"
To:
Sent: Sunday, August 26, 2001 12:34 AM
Subject: RE: Pix Route issue [7:17242]
> two networks connect to inside interface the inside interface add is
> 10.1.1.4
>
> route inside 10.1.2.0 255.0.0.0 10.1.1.4 1
> route inside 10.1.3.0 255.0.0.0 10.1.1.4 1
>
>
>
> Best Regards
>
> Have A Good Day!!
>
> *******************************************
> Farhan Ahmed*
> MCSE+I, MCP Win2k, CCDA, CCNA, CSE
> Network Engineer
> Mideast Data Systems Abudhabi Uae.
>
> *******************************************
>
>
>
> Privileged/Confidential Information may be contained in this message or
> Attachments hereto. Please advise immediately if you or your employer do
> not consent to Internet email for messages of this kind. Opinions,
> Conclusions and other information in this message that do not relate to
the
> Official business of this company shall be understood as neither given nor
> Endorsed by it.
>
>
> > -----Original Message-----
> > From: Bob Nawrocki [mailto:[EMAIL PROTECTED]]
> > Sent: Saturday, August 25, 2001 8:30 PM
> > To: [EMAIL PROTECTED]
> > Subject: Pix Route issue [7:17242]
> >
> >
> > We have a Pix firewall that is serving as a default gateway
> > to the Internet
> > as well as providing ipsec tunnel connectivity to several
> > remote offices for
> > serveral hosts on a subnet. On the same subnet we have a 2600
> > providing a
> > point to point wan link. I added a route to the Pix on the
> > inside interface
> > to point to the 2600 for the wan route. I am still not able
> > to connect to
> > that subnet unless i add a specific route on the hosts. When
> > running debug
> > logging on the Pix I get the following output:
> >
> > 106011: Deny inbound (No xlate) icmp src inside:10.111.1.55 dst
> > inside:10.112.3.3 (type 8, code 0)
> >
> > Any thoughts?
> >
> > Bob Nawrocki
> > CCNP CCDP
>
> [GroupStudy.com removed an attachment of type application/octet-stream
which
> had a name of Farhan Ahmed.vcf]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=17398&t=17242
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
