Transparent mode on a PIX

How do I set up transparent mode on both the command line and PDM
johnc0817Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

billwhartonCommented:
Firstly, you can only run transparent mode in version 7. Hence, make sure that's what you are running

In transparent mode the PIX does not have IP addresses assigned to its interfaces. Instead it acts as a Layer 2 bridge that maintains a MAC address table and makes forwarding decisions based on that. The use of full extended IP access lists is still available and the firewall can inspect IP activity at any layer. In this mode of operation the PIX is often referred to as a "bump in the wire" or "stealth firewall". There are other significant differences as to how transparent mode operates in comparison to routed mode:

    *      Only two interfaces are supportedinside and outside
    *      NAT is not supported or required since the PIX is no longer a hop

Make sure you read this overview of the mode too here:
http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/fwmode.html#wp1201980

To set up transparent mode on the firewall, either do firewall transparent or mode transparent from the configuration mode

You can follow this example to create a configuration:
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a008089f467.shtml



0
johnc0817Author Commented:
Can I set this up in PDM or must I use command line?
0
billwhartonCommented:
I don't know what version of PDM you are running but all configuration docs are located here. check your 'show version' on the firewall and find out what PDM version you have. Then choose here

http://www.cisco.com/univercd/cc/td/doc/product/netsec/secmgmt/asdm/index.htm

There are some references to setting transparent mode at these links:
http://www.cisco.com/en/US/docs/security/asa/asa72/asdm52/user/guide/fwmode.html
http://www.cisco.com/en/US/docs/security/asa/asa72/asdm52/user/guide/startwiz.html
http://www.cisco.com/en/US/docs/security/asa/asa72/asdm52/user/guide/devadmin.html
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Cisco

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.