Skip to main content

PIX No Route error

More
19 years 6 months ago #8290 by patrickh99
PIX No Route error was created by patrickh99
Hi all:
i have 4 logical interfaces (vlans) on one physical interface. I can route between 3 of the 4. Any traffic from dmz8 to dmz3 generates this error: %PIX-6-110001: No route to 192.168.3.x from 192.168.8.x

Traffic from dmz1 flows to/from dmz3, 8, & 9 ok
Traffic from dmz3 flows to/from dmz1 & 9 ok
Traffic from dmz8 flows to/from dmz1 & 9 ok
Traffic from dmz9 flows to/from dmz1, 3, & 8 ok

Show route:
dmz1 192.168.1.0 255.255.255.0 192.168.1.254 1 CONNECT static
dmz3 192.168.3.0 255.255.255.0 192.168.3.254 1 CONNECT static
dmz8 192.168.8.0 255.255.255.0 192.168.8.254 1 CONNECT static
dmz9 192.168.9.0 255.255.255.0 192.168.9.254 1 CONNECT static

TIA
More
19 years 6 months ago #8296 by MaXiMuS
Replied by MaXiMuS on topic Re: PIX No Route error
Check if you have assigned the same security level to both the interfaces
More
19 years 6 months ago #8398 by patrickh99
Replied by patrickh99 on topic different security levels
I double-checked security levels, they are different.
More
19 years 6 months ago #8428 by sidd
Replied by sidd on topic Re: PIX No Route error
Hi

can you check the static or the nat translation. Also check the access rules for the same since the traffic flow from the high level interface would always be allowed but from a low level it wouold always be restricted.


Sidd
More
19 years 6 months ago #8518 by patrickh99
Replied by patrickh99 on topic No route
I checked the static, nat, and acl. Any time I have errors in them, I get a "no xlate" or "denied by acl" message instead of "no route" error.
More
19 years 6 months ago #8519 by patrickh99
Replied by patrickh99 on topic No Route
Cisco TAC is baffled too.
Time to create page: 0.132 seconds