Is it possible to do something like policy routing with a PIX firewall?

From: OCTAVIO RODRIGUEZ MARTIN (octavio@xxxxxx)
Date: Thu Aug 02 2001 - 10:08:55 GMT-3

• Next message: Fears, Jonathan: "OSPF/IGRP Redistribution"
• Previous message: Gregory W. Posey Jr.: "RE: selecting based on SN-mask in ACL"
• Next in thread: Annu: "Re: Is it possible to do something like policy routing with a PIX firewall?"
• Maybe reply: Annu: "Re: Is it possible to do something like policy routing with a PIX firewall?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
I need to do a PIX route to a different default router
depending on the source IP address. I have a PIX 515
(5.2.4) (4 Interfaces) with an outside interface default route.
For traffic from the outside interface, the PIX (because of
the default route) try to send unknow IP destination traffic to
the outside interface but this traffic can't be sent because of
no xlate's. Then It could be necessary to configure
static(outside,outside) for every outside destination (Internet).
Then it could be good to have a different
default route for traffic from the inside and for the traffic from
the outside. It could be good too, the PIX to send traffic
from the ouside interface to the outside interface
(without the static(outside,outside) command) and use
only one default route.
I don't know if anyone can help me
Thanks
Octavio.
**Please read:http://www.groupstudy.com/list/posting.html

• Next message: Fears, Jonathan: "OSPF/IGRP Redistribution"
• Previous message: Gregory W. Posey Jr.: "RE: selecting based on SN-mask in ACL"
• Next in thread: Annu: "Re: Is it possible to do something like policy routing with a PIX firewall?"
• Maybe reply: Annu: "Re: Is it possible to do something like policy routing with a PIX firewall?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:31:43 GMT-3