Allow outside traffic through 2600 router to cisco pix firewall 1

[kevin2003]

Hi,

I've a cisco 2600 router connect between my t-1 line and my pix515e firewall. in my firewall I created an access-list for an outside vendor to access one of the host on my network (inside of the firewall). The user can not access with an error message"unable to connect to host" and he thinks that I need to allow him into the cicsco2600 router so it can route to the firewall????

Is it true? and if it is what line do I need to enter in my 2600 router to allow him through???

Thanks,

Kevin Nguyen

 

[KiscoKid]

The 2600 only needs to know how to route the IP subnet that the external user is trying to connect to. It will also need a default route pointing to the ISP. Issue the 'show ip route a.b.c.d' on the 2600 where a.b.c.d is the IP subnet of the host he is connecting to.

By the way, in addition to the access list you also need to define a NAT or PAT rule on the PIX to allow access to the internal host.