Connecting two Cisco PIX 515 as per following Picture

Hi,

I would like to be able to setup a network as per this picture.

(1) Is it possible ? (2) How do I setup config for pc's in inside of FW1 to inside of FW2 etc ?

formatting link

Reply to
djjase
Loading thread data ...

yes it is

do you need inside to inside access or do you need access to other segments aswell ? The best way is to create LAN-to-LAN tunnel between the two PIX firewalls

HTH Martin Bilgrav

Reply to
Martin Bilgrav

You can also do

--left firewall

static (inside,DMZ2) 192.168.0.0 192.168.0.0 255.255.255.0 0.0 route DMZ2 192.168.1.0 255.255.255.0 192.168.2.5

-- right firewall

static (inside,DMZ1) 192.168.1.0 192.168.1.0 255.255.255.0 0.0 route DMZ1 192.168.0.0 255.255.255.0 192.168.2.1

then proper access-list filtering

Reply to
mcaissie

Hi, Thank you for the information. There will be a need to be able to access different segments with certain ports. For Example.

(1) Need to be able to SSH from Internet to 192.168.4.6 on DMZ 4, and Inside (192.168.1.0) of FW2(Right Hand) (2) Most of the data that needs to go between the two is all internet based. ie a pc inside FW1 connects to web server in DMZ3 on FW2 and Admin Server inside FW2 (3) The servers in DMZ3 and Inside of FW 2 talk to each other via certain ports

Reply to
djjase

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.