Ping through Pix

Discussion in 'Cisco' started by Sean James, Jul 16, 2003.

  1. Sean James

    Sean James Guest

    I have to Pix's on one LAN. The one pix is the default gateway for the
    workstations. When I try to ping a workstation that is on the external
    interface of the second pix, I get no response.

    I have used debug packet one the default pix. I see the packet arriving. On
    the secondary pix I do not see the packet arriving.

    There are no accees-list on the internal interface of the default pix.
    From the default pix, I can ping the machine on the external interface of
    the secondary pix.
    If I change my default gateway to the secondary pix, then the workstations
    can also ping the external machines

    Any idea's where I can start?

    Thanks
     
    Sean James, Jul 16, 2003
    #1
    1. Advertising

  2. In article <bf3eor$1tec$>,
    Sean James <> wrote:
    :I have to Pix's on one LAN. The one pix is the default gateway for the
    :workstations. When I try to ping a workstation that is on the external
    :interface of the second pix, I get no response.

    The PIX will NEVER route packets back through the same [logical]
    interface that it received the packets on.

    You need to do one of the following:
    - add an internal router; or
    - add routes on the workstations to have them go directly to the second
    PIX when appropriate; or
    - if you have a 515, 515E, 525, or 535, upgrade to 6.3(1), attach the
    PIX to an 802.1Q-aware switch, and create multiple logical interfaces
    on the internal physical interface.

    --
    "WHEN QUINED, YIELDS A TORTOISE'S LOVE-SONG"
    WHEN QUINED, YIELDS A TORTOISE'S LOVE-SONG. (GEB)
     
    Walter Roberson, Jul 16, 2003
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Jason Kau

    VPN through PIX to PIX

    Jason Kau, Jul 24, 2003, in forum: Cisco
    Replies:
    1
    Views:
    4,014
    Marc Van der Sypt
    Jul 25, 2003
  2. J Bard
    Replies:
    2
    Views:
    4,038
    J Bard
    Jan 10, 2004
  3. Andrew J Instone-Cowie

    Cisco VPN through a PIX 501 to another PIX?

    Andrew J Instone-Cowie, Jan 20, 2004, in forum: Cisco
    Replies:
    5
    Views:
    4,147
    Andrew J Instone-Cowie
    Jan 22, 2004
  4. nordberg
    Replies:
    1
    Views:
    534
  5. Leigh Harrison

    Ping PIX inside interface through VPN

    Leigh Harrison, Jun 17, 2005, in forum: Cisco
    Replies:
    2
    Views:
    5,825
    bbiandov
    Mar 13, 2009
Loading...

Share This Page