I have a PIX 501 connected to my internet link (outside interface set to DHCP) and a Linksys WRT54GX4 connected to one of the inside ports on the PIX, and connected to the WAN port on the Linksys. The IP address inside (PIX) is 192.168.10.1 and it hands out DHCP addresses. The Linksys router is grabbing a WAN address 192.168.10.2 (from the PIX) with a gateway of 192.168.10.1. The Linksys internal addressing scheme is 192.168.1.x.
Connecting machines to the Linksys either wired/wirelessly works perfectly. No internet connection problems. However, I want to use a machine on my network (192.168.1.30) as a Kiwi syslogger and PRTG graphing station. However, I cannot seem to get it to work. What I have done:
1. Added the machine (192.168.1.30) to the DMZ on the Linksys
2. Configured SNMP on the PIX to send to 192.168.1.30
3. Configured logging on the PIX to send to 192.168.1.30
4. Tried to ping 192.168.10.1 from the .30 machine - successful
5. Tried to ping 192.168.1.30 from the PIX console (192.168.10.1) - unsuccessful
It seems to me that I have a routing problem from the PIX back to the workstation. Does anyone have any ideas how to fix this. I've been experimenting with adding routes on the PIX with no luck.
My primary reason for running in this config is that the Linksys does a horrible job of logging and interacting with PRTG. I've put the PIX in front of it for its superior capabilities in this area.
Any ideas? I'm stumped!
EDIT---I upped the logging level on the PIX and now I'm seeing "No route to 192.168.1.30 from 192.168.10.1" messages on the console. Seems like a routing problem to me.
What I think I need to to is to define a route on the inside interface from the 192.168.10.x range to the 192.168.1.x range. I thought it would be as simple as doing a "route inside 192.168.1.0 255.255.255.0 192.168.10.1", but that doesn't seem to work.
Thanks!
Connecting machines to the Linksys either wired/wirelessly works perfectly. No internet connection problems. However, I want to use a machine on my network (192.168.1.30) as a Kiwi syslogger and PRTG graphing station. However, I cannot seem to get it to work. What I have done:
1. Added the machine (192.168.1.30) to the DMZ on the Linksys
2. Configured SNMP on the PIX to send to 192.168.1.30
3. Configured logging on the PIX to send to 192.168.1.30
4. Tried to ping 192.168.10.1 from the .30 machine - successful
5. Tried to ping 192.168.1.30 from the PIX console (192.168.10.1) - unsuccessful
It seems to me that I have a routing problem from the PIX back to the workstation. Does anyone have any ideas how to fix this. I've been experimenting with adding routes on the PIX with no luck.
My primary reason for running in this config is that the Linksys does a horrible job of logging and interacting with PRTG. I've put the PIX in front of it for its superior capabilities in this area.
Any ideas? I'm stumped!
EDIT---I upped the logging level on the PIX and now I'm seeing "No route to 192.168.1.30 from 192.168.10.1" messages on the console. Seems like a routing problem to me.
What I think I need to to is to define a route on the inside interface from the 192.168.10.x range to the 192.168.1.x range. I thought it would be as simple as doing a "route inside 192.168.1.0 255.255.255.0 192.168.10.1", but that doesn't seem to work.
Thanks!
