Ever noticed this fact ? When a trace route is done from a network which is protected by PIX firewall, the pix interface doesn’t appear in the hop list ?
Consider this network;
10.1.1.1——–(10.1.1.2)Router(100.100.100.100)—-(100.100.100.101)(PIX)(200.200.200.200)—–InternetIP
Trace route will list;
10.1.1.2
100.100.100.101
InternetIP
The PIX interfaces will not be listed in it, either the trace route in ‘inbound’ or ‘outbound’! This is by design until 6.3(5) and in 7.0 version, you have an option of choose to disable natting. Once that is done, PIX acts as a router and the interfaces will be displayed.
