Hello Bob,
Saturday, August 25, 2001, 8:29:31 PM, you wrote:
BN> We have a Pix firewall that is serving as a default gateway to the
Internet
BN> as well as providing ipsec tunnel connectivity to several remote offices
for
BN> serveral hosts on a subnet. On the same subnet we have a 2600 providing a
BN> point to point wan link. I added a route to the Pix on the inside
interface
BN> to point to the 2600 for the wan route. I am still not able to connect
to
BN> that subnet unless i add a specific route on the hosts. When running
debug
BN> logging on the Pix I get the following output:
BN> 106011: Deny inbound (No xlate) icmp src inside:10.111.1.55 dst
BN> inside:10.112.3.3 (type 8, code 0)
BN> Any thoughts?
It's look like you deny packets to this address on your inside
PIX interface. See you inside rules.
As I understand when you added route on PC they direct packets to 2600
beside PIX.
Not enough information, to make more suggestions.
----
Best regards,
Paul N. Kolesnikov Etel Inc., Ryazan
Tel. (+7) (0912) 21 5621 Fax (+7) (0912) 21 5767
mailto:[EMAIL PROTECTED] http://www.ryazan.net
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=17253&t=17242
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
