1. Home
  2. Cisco Systems
  3. Routing between 2 firewalls

Routing between 2 firewalls

Hi,

I have 2 networks with their own fw, routers and internet connection. I want to joing them using a DMZ zone on each firewall connected via a switch. As per this diagram:

[IMG]
formatting link
The problem is that I can't attach to any of the servers in the other network. The Office PC's need to be able to attach to the Admin servers etc in the other network.

The PIX FW are Pix 515 7.0 they have 4 x extra ports in each of them.

I need to know exactly how to do this as I don't know that much about PIX firewalls.

thks

Reply to
djjase
Loading thread data ...

On each Pix, within Configuration/Building Blocks/Hosts/Networks, select the interface facing the dmz switch and define the opposite sides network. Then click 'next' and define a static route using each pix as the gateway. That tells the Pix's of each sides network and how to get there. You then just need to add the appropriate traffic rules.

BernieM

Reply to
BernieM

How would you do that just using the command line ?

Reply to
djjase

In relation to the jpeg, assuming 24-bit masks, here's the routing rules ...

Pix on the left:

name 192.168.1.0 Linux-Apps name 192.168.3.0 Linux-Web

route dmz2 Linux-Apps 255.255.255.0 172.16.32.5 1 route dmz2 Linux-Web 255.255.255.0 172.16.32.5 1

Pix on the right:

name 192.168.0.0 Backup-Srv name 10.10.10.0 Test-Srv

route dmz5 Backup-Srv 255.255.255.0 172.16.32.1 1 route dmz5 Test-Srv 255.255.255.0 172.16.32.1 1

Do you know what access rules are needed?

BernieM

Reply to
BernieM

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.