Dear All,
I am trying to get a PIX 520 firewall up with four LAN connections. I am
just trying to put up a small config in place to start off. I will be very
happy if I can I be guided on whether I am on the right track.
hostname PIX520
nameif ethernet 0 outside 20
nameif ethernet1 HSLAN 40
nameif ethernet2 ASPLAN 60
nameif ethernet3 inside 80
ip address outside 1.1.1.1 255.255.255.0
ip address HSLAN 2.2.2.2 255.255.255.0
ip address ASPLAN 3.3.3.3 255.255.255.0
ip address inside 4.4.4.4 255.255.255.0
route 0.0.0.0 0.0.0.0 1.1.1.2 1 <default route>
nat (inside) 0 0 0 (Disabling NAT)
conduit permit icmp any any <permitting all icmp traffic>
static (HSLAN, ASPLAN) 2.2.2.0 netmask 255.255.255.0
conduit permit ip 2.2.2.0 3.3.3.0 255.255.255.0
(Rule permitting access from entire ASPLAN to entire HSLAN)
static (ASPLAN, HSLAN) 3.3.3.0 netmask 255.255.255.0
conduit permit ip 3.3.3.0 2.2.2.0 255.255.255.0
(Rule permitting access from entire HSLAN to entire ASPLAN)
static (ASPLAN, outside) 2.2.2.0 netmask 255.255.255.0
conduit permit ip 2.2.2.0 any
(Rule permitting access from entire Internet to entire ASPLAN)
static (HSLAN, outside) 3.3.3.0 netmask 255.255.255.0
conduit permit ip 3.3.3.0 any
(Rule permitting access from entire Internet to entire HSLAN)
static (inside, outside) 4.4.4.0 netmask 255.255.255.0
conduit permit ip 4.4.4.0 1.1.1.0 255.255.255.0
(Rule permitting access from entire Outside (Backbone) LAN to entire
ASPLAN)
static (outside, inside) 1.1.1.0 netmask 255.255.255.0
conduit permit ip 1.1.1.0 4.4.4.0 255.255.255.0
(Rule permitting access from entire inside LAN to entire Internet)
Kindly enlighten me on whether I am on the right track.
Thanks a lot in advance.
With warm regards,
Vinod.
This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:12:35 EDT