Hi, looking for some guidance as I currently have a pix setup as follows
Internet | Pix ---- DMZ | Internal network
using the static comand to disable nat from the dmz to internal which allows access for servers in the dmz to access (with teh correct acl) servers in the internal lan. We will be segmenting this internal network to contain two networks as shown below
Internet | Pix ---- DMZ | Internal network1 ---Router--Internal Network2
Leaving the config as is the servers in the DMZ cant traverse to the internal network2 (due to the fact that the pix doesn't know about it). Howver, since the internal network2 is not directly connected to the pix inside interface, what neds to happen to permit (besides an ACL) traffic from the DMZ to Inernal Network2?
Thanks,
Ted