Information Technology Reference
In-Depth Information
Multilayered Firewall System
Figure 12-7
Internet
Outside filtering router
Outside PIX Firewall
Isolation LAN
Bastion hosts
Inside Isolation LAN
Inside PIX Firewall
Inside filtering router
PIX Firewall Configuration
This section contains a simple PIX Firewall configuration. The PIX Firewall has exec and
enable modes that are similar to a router. Set the exec password with the
passwd
command. Set
the enable password with the
enable password
command. Configure outside and inside IP
addresses with the
ip address
command. Configure static routes for outbound and inbound
packets with the
route inside
and
route outside
commands.
Use the
nat
and
global
commands together to configure outbound translations. The
nat
command specifies which inside hosts are translated. The
global
command configures the
outside addresses to which translations occur. The outside global addresses are Internet
routable, globally unique addresses.
Search WWH ::
Custom Search