Hello all. I am totally blown away. I have a PIX515 and Cisco tech support person says I cannot host my own DNS, WEB and mail servers off the same inside or DMZ interface and have the lan users access these via their public dns hostnames? Original issues was I had to replace a PoS Linksys (which BTW works!) that was locking up at random times. I first replaced with a brand new Linksys and 5 days later same lockups on new unit. Latest code Blah, blah blah... Random lockups. I then proceeded to purchase the $600 PIX 501 and just do a basic replacement of the Linksys and all should have been well. Right? After 3 hours I get on the horn with Cisco and they say it can't be done with a 501 in this configuration (DNS, WEB and MAIL on inside same interface). So Cisco says need another box so my question to them was if I get a box with DMZ will that work and I thought I understood their answer was yes. I had a PIX 515 and proceeded to config. Same Damn problem!!!! End user on inside cannot access web site on DMZ via the public dns name http://www.company.com! (WEB, DNS and mail on DMZ subnet). What a Joke!!! I guess it is time to buy a NetScreen since the PIX is a Joke.
I can do this with a $99 dollar Linksys!!! I have a public IP on outside and unique private space on DMZ and inside. I am of course doing nat to RFC 1918 space. Can someone please explain to me why this is not an option? Cisco!!!! It's not that tough! Can't you get this right?