"echo request" messages with 1s
>> interval
>> > from 192.168.1.2 to 192.168.2.2, I'm also able to send ICMP "echo
>> request"
>> > messages(and receive replies) from 192.168.2.2 to 192.168.1.2. Once I
>> stop
>> > the ping in 192.16
sociations explained in those examples? Probably not on IOS
> platform? Or are most of those stateful firewalls struggling with
> connectionless protocols?
>
>
> regards,
> Martin
>
>
> On 8/30/13, Darren O'Connor wrote:
> > This is the expected behaviour with ICMP. B
tworks to both all the time or do
> you only want to ever be able to ping from 192.168.1.0/24 to 192.168.2.0/24
> ?
>
>
> If you simply want to allow ping you can set icmp traffic to 'pass' but you
> will need to allow both ways as no session data is created.
>
>
> Darren
> http://www.mellowd.co.uk/ccie
>
>
>
> > Date: Fri, 30 Aug 2013 19:09:53 +0300
> > Subject: Re: [c-nsp] separate two directly connected networks on a Cisco
> 1800 series ISR?
> > From: m4rtn...@gmail.com
> > To: darre...@outlook.com; c...@mar
is created.
If you only want it one way, you could add an ACL that allows echo from one
side and echo-reply from the other.
Thanks
Darren
http://www.mellowd.co.uk/ccie
> Date: Fri, 30 Aug 2013 19:09:53 +0300
> Subject: Re: [c-nsp] separate two directly connected networks on a Cisco 18
wd.co.uk/ccie
>
>
>> Date: Wed, 28 Aug 2013 14:20:33 +0300
>> From: m4rtn...@gmail.com
>> To: cisco-nsp@puck.nether.net
>> Subject: [c-nsp] separate two directly connected networks on a Cisco
>> 1800 series ISR?
>>
>> Hi,
>>
>> I have a netwo
> What is the best approach here? Stick with this NAT solution described
> above? Something completely different to separate two networks behind
> the same router?
To avoide the hide nat of your vlan5 so you can see the true src-ip,
you may try to use reflexive access-lists to temporarily allow
th
To: cisco-nsp@puck.nether.net
> Subject: [c-nsp] separate two directly connected networks on a Cisco 1800
> series ISR?
>
> Hi,
>
> I have a network setup where networks 192.168.1.0/24 and
> 192.168.2.0/24 are served by same router(Cisco 1841,
> c1841-spservicesk9-mz.1
Hi,
I have a network setup where networks 192.168.1.0/24 and
192.168.2.0/24 are served by same router(Cisco 1841,
c1841-spservicesk9-mz.124-7a.bin) and while addresses in
192.168.1.0/24 are NAT -ed to inside global address 10.10.10.1, the
192.168.2.0/24 network is not NAT-ed:
http://s10.postimg.or
