Half-way to Goal. I tried to ping from 192.168.96.0/24 & 172.16.0.x devices to 192.168.193.1.
It works.
However, devices from 192.168.193.1 firewall or other deviecs cannot ping to 192.168.96.0/24 & 172.16.0.x devices.
Devices from 192.168.96.0/24 & 172.16.0.x.can remote to 192.168.193.x devices
kaychan@LAXFWL0001> ping 192.168.99.109
PING 192.168.99.109 (192.168.99.109): 56 data bytes
76 bytes from agg10.tustcaft01r.socal.rr.com (66.75.161.48): Time to live exceeded
Vr HL TOS Len ID Flg off TTL Pro cks Src Dst
4 5 40 0054 5908 0 0000 01 01 c466 69.75.50.154 192.168.99.109
76 bytes from agg10.tustcaft01r.socal.rr.com (66.75.161.48): Time to live exceeded
Vr HL TOS Len ID Flg off TTL Pro cks Src Dst
4 5 40 0054 590f 0 0000 01 01 c45f 69.75.50.154 192.168.99.109
76 bytes from agg10.tustcaft01r.socal.rr.com (66.75.161.48): Time to live exceeded
Vr HL TOS Len ID Flg off TTL Pro cks Src Dst
4 5 40 0054 591a 0 0000 01 01 c454 69.75.50.154 192.168.99.109
76 bytes from agg10.tustcaft01r.socal.rr.com (66.75.161.48): Time to live exceeded
Vr HL TOS Len ID Flg off TTL Pro cks Src Dst
4 5 40 0054 5921 0 0000 01 01 c44d 69.75.50.154 192.168.99.109
^C
--- 192.168.99.109 ping statistics ---
4 packets transmitted, 0 packets received, 100% packet loss
kaychan@LAXFWL0001> ping 172.16.0.20
PING 172.16.0.20 (172.16.0.20): 56 data bytes
^C
--- 172.16.0.20 ping statistics ---
11 packets transmitted, 0 packets received, 100% packet loss
kaychan@LAXFWL0001> show route 172.16.0.20
inet.0: 6 destinations, 6 routes (6 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both
0.0.0.0/0 *[Static/5] 2w5d 20:13:48
> to 69.75.50.153 via fe-0/0/2.0
kaychan@LAXFWL0001> show route 192.168.99.109
inet.0: 6 destinations, 6 routes (6 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both
0.0.0.0/0 *[Static/5] 2w5d 20:13:57
> to 69.75.50.153 via fe-0/0/2.0
kaychan@LAXFWL0001>
Thanks