Hi everybody,
I have to configure a cisco PIX 515e
There are three interfaces
-Outside
-Inside
-DMZ (not yet configured)
For the moment, I just want to be able to ping internet IP from the hosts of my Inside interface.
Here is my configuration!!! What is it missing???
interface ethernet0 auto
interface ethernet1 auto
interface ethernet2 auto
nameif ethernet0 outside security0
nameif ethernet1 inside security100
nameif ethernet2 dmz security50
enable password 8Ry2YjIyt7RRXU24 encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
hostname pixfirewall
fixup protocol dns maximum-length 512
.
.
fixup protocol tftp 69
names
access-list ping_acl permit icmp any any
pager lines 24
ip address outside xx.xxx.xx.2 255.255.255.224
ip address inside 192.168.1.1 255.255.255.0
ip address dmz 192.168.3.1 255.255.255.0
ip audit info action alarm
ip audit attack action alarm
pdm history enable
arp timeout 14400
nat (inside) 1 192.168.1.0 255.255.255.0 0 0
static (inside,outside) 192.168.1.0 xx.xxx.xx.0 netmask 255.255.255.224 0 0
access-group ping_acl in interface inside
route outside 0.0.0.0 0.0.0.0 xx.xxx.xx.1 1
THANK YOU FOR YOUR HELP!!!
I have to configure a cisco PIX 515e
There are three interfaces
-Outside
-Inside
-DMZ (not yet configured)
For the moment, I just want to be able to ping internet IP from the hosts of my Inside interface.
Here is my configuration!!! What is it missing???
interface ethernet0 auto
interface ethernet1 auto
interface ethernet2 auto
nameif ethernet0 outside security0
nameif ethernet1 inside security100
nameif ethernet2 dmz security50
enable password 8Ry2YjIyt7RRXU24 encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
hostname pixfirewall
fixup protocol dns maximum-length 512
.
.
fixup protocol tftp 69
names
access-list ping_acl permit icmp any any
pager lines 24
ip address outside xx.xxx.xx.2 255.255.255.224
ip address inside 192.168.1.1 255.255.255.0
ip address dmz 192.168.3.1 255.255.255.0
ip audit info action alarm
ip audit attack action alarm
pdm history enable
arp timeout 14400
nat (inside) 1 192.168.1.0 255.255.255.0 0 0
static (inside,outside) 192.168.1.0 xx.xxx.xx.0 netmask 255.255.255.224 0 0
access-group ping_acl in interface inside
route outside 0.0.0.0 0.0.0.0 xx.xxx.xx.1 1
THANK YOU FOR YOUR HELP!!!