1. Home
  2. Networking Firewalls
  3. Connecting 2 networks

Connecting 2 networks

For testing purposes, I am trying to connect 2 PC's on different subnets via a Win 2003 server with Routing and Remote Access.

I have the following setup:

PC1 ip: 192.168.254.1 subnet: 255.255.255.0 dgway: 192.168.254.252

Win2003 Server nic1: ip: 192.168.254.250 subnet: 255.255.255.0 dgway:

nic2: ip: 192.168.253.254 subnet: 255.255.255.0 dgway:

PC2 ip: 192.168.253.10 subnet: 255.255.255.0 dgway: 192.168.253.254

On 192.168.254.252 is our Cisco PIX firewall through which we connect to the Internet.

I understand I need to add a static route to the firewall, so I have added:

route inside 192.168.253.0 255.255.255.0 192.168.254.250

I am unable to connect PC1 and PC2 together. I can from PC2 to

192.168.253.254 and 192.168.254.250.

It has been suggested to me that I need to allow ICMP redirect packets in the rules on the firewall. However I am unsure with the exact command to use.

Any help or other suggestions would be appreciated.

Martin

Reply to
Mart
Loading thread data ...

Does PC1 also have a route to 192.168.253.0/24 via 192.168.254.250?

Sunny

Reply to
Sunny

There is no route set on PC1. I was trying to achieve this without routing on either PC.

Martin

Reply to
Mart

You have three choices:

- Recable the network such that PC2 is reachable via PC1's default gateway

- Configure the firewall to send an ICMP redirect when PC1 tries to reach PC2 via the firewall. I don't do PIX so can't help with the exact command.

- Add a route to PC1 telling it how to get to PC2

Sunny

Reply to
Sunny

Thanks - its the ICMP redirect option that I'm trying to find out about. When I try and set this up on the PIX on the inside interface I get an error about cannot set on the same security level.

Does anyone know how I should set this on the PIX?

TIA

Martin

Reply to
Mart

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.