Information Technology Reference
In-Depth Information
Multilayered Firewall System
Figure 12-7
Internet
Outside filtering router
Outside PIX Firewall
Isolation LAN
Bastion hosts
Inside Isolation LAN
Inside PIX Firewall
Inside filtering router
PIX Firewall Configuration
This section contains a simple PIX Firewall configuration. The PIX Firewall has exec and
enable modes that are similar to a router. Set the exec password with the passwd command. Set
the enable password with the enable password command. Configure outside and inside IP
addresses with the ip address command. Configure static routes for outbound and inbound
packets with the route inside and route outside commands.
Use the nat and global commands together to configure outbound translations. The nat
command specifies which inside hosts are translated. The global command configures the
outside addresses to which translations occur. The outside global addresses are Internet
routable, globally unique addresses.
 
Search WWH ::




Custom Search