Can you ping a system on the inside?
From Pix - ping inside x.x.x.x
To:
Sent: Wednesday, May 22, 2002 4:14 PM
Subject: FW: PIX 515E routing issue [7:44749]
Oh yeah I'm running PIX 6.1(2)
-Original Message-
From: Jablonski, Michael
Sent: Wednesday, May 22, 2002 3:35 PM
Just for grins, try removing the ip verify reverse-path statement.
From CCO Before using this command, add static route command statements
for every network that can be accessed on the interfaces you wish to
protect. Only enable this command if routing is fully specified. Otherwise,
PIX
-
From: netman [mailto:[EMAIL PROTECTED]]
Sent: Thursday, May 23, 2002 6:53 AM
To: [EMAIL PROTECTED]
Subject: Re: PIX 515E routing issue [7:44749]
Can you ping a system on the inside?
From Pix - ping inside x.x.x.x
To:
Sent: Wednesday, May 22, 2002 4:14 PM
Subject: FW: PIX 515E routing issue [7
PROTECTED]
Subject: RE: PIX 515E routing issue [7:44749]
From the PIX, i can ping the inside workstations
I tried adding a permit all icmp rule didn't work
did the no ip verify reverse-path statement and changed the outside
network from /30 to a /28. This seemed to work.
Thanks
Mike Wrote:
192.168.1.1 Netid
192.168.1.2 host1
192.168.1.3 host2
192.168.1.4 Broadcast
192.168.1.5 Netid
192.168.1.6 host1
192.168.1.7 host2
192.168.1.8 Broadcast
This is not correct with a /30 subnet mask.
This is the correct numbering.
192.168.1.0 Netid
192.168.1.1 host 1
Try to explicitly permit ICMP from the inside to the outside and see if that
helps.
Thanks
Larry
-Original Message-
From: Jablonski, Michael [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, May 22, 2002 4:14 PM
To: [EMAIL PROTECTED]
Subject: FW: PIX 515E routing issue [7:44749]
Oh yeah
6 matches
Mail list logo