Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Cisco > pix 501 - routing from pix subnet to another (dir-655) question

Reply
Thread Tools

pix 501 - routing from pix subnet to another (dir-655) question

 
 
ra170 ra170 is offline
Junior Member
Join Date: Nov 2010
Posts: 3
 
      11-22-2010
I have pix 501 cisco firewall with internal ip `192.168.10.1.`
I have connected d-link router (dir-655) to that pix 501.
This d-link router has internal `ip 192.168.0.1`

The picture would like something like that:
|pix 501| has 192.168.10.1 ip
|DIR-655| has 192.168.0.1 ip

1. |cable modem|----|pix 501|-------|DIR-655|-----PC
2. PC--------|pix 501|---------|DIR-655|
|
|
|cable modem|

When I'm on the wireless network (dir-655) with assigned ip of `192.168.0.x` I can cross the subnet and connect to my firewall `192.168.10.1.` (pic. 1)

The problem is that if I'm on the `192.168.10.x` network I can't connect to anything over at `192.168.0.x` network. (pic.2)

I've tried entering a static route like this:
`route inside 192.168.0.0 255.255.255.0 192.168.10.1 1`
But still, can't connect to 192.168.0.1 or anything on that subnet.

Is there a way to setup a static route? or do I need access-list? or ip address (entry) ?
Do I need to add separate router between PIX 501 and DIR-655?

I would think that static route like this should take care of it, but it doesn't.

This is my route config and nat:
(config)# sh route
outside 0.0.0.0 0.0.0.0 (outside_IP) 1 DHCP static
outside (outside_IP) 255.255.248.0 (outside_IP) 1 CONNECT static
inside 192.168.0.0 255.255.255.0 192.168.10.1 1 OTHER static
inside 192.168.10.0 255.255.255.0 192.168.10.1 1 CONNECT static

(config)# sh nat
nat (inside) 1 192.168.1.0 255.255.255.0 0 0
nat (inside) 1 192.168.10.0 255.255.255.0 0 0
nat (inside) 1 0.0.0.0 0.0.0.0 0 0

I would really appreciate some help! Thanks.
 
Reply With Quote
 
 
 
 
ra170 ra170 is offline
Junior Member
Join Date: Nov 2010
Posts: 3
 
      11-22-2010
I edited configuration on the d-link DIR-655 and set it up with static ip of 192.168.10.30 (as the outside wan ip)

then on pix 501 I've entered route:

inside 192.168.0.0 255.255.255.0 192.168.10.30 1 OTHER static

but still it doesn't work.
 
Reply With Quote
 
 
 
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Changed Inside IP subnet on PIX 501, cant VPN to PIX 515 Scott Townsend Cisco 2 03-04-2008 02:35 PM
Cisco 1812 subnet to subnet NAT Amadej Cisco 1 09-04-2007 06:53 PM
Add a private subnet to existing real class C subnet bubbleserver@gmail.com Cisco 5 01-18-2007 04:59 PM
cannot ping from subnet A to subnet B for a specific host soup_or_power@yahoo.com Cisco 16 08-04-2006 02:30 PM
Subnet a subnet mask? Vass Computer Support 1 08-26-2005 01:02 PM



Advertisments