PIX 515 config issues

Unanswered Question
Jul 2nd, 2007
User Badges:

I know I am missing something here I just can't figure it out.. Something doesn't feel right about this config and I am having issues getting from one inside to dmz and inside to outside randomly. Any tips or suggestions on this config?

Inside should be network

dmz is network

outside is network

inside users need to get to dmz and outside, dns resides outside and on a dmz server also, 2 outside ips and 101 should be natted and .4 each with a few ports being forwarded to them and that is all. Basic config nice and easy and something just seems fishy with it..

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
vitripat Mon, 07/02/2007 - 18:18
User Badges:
  • Gold, 750 points or more

Keeping in mind your requirements, you dont need to have nat/global rules configured the way they are right now. It seems that you are exhausting the IPs in global pool for outbound access and hence facing issues. Try following-

clear global

no nat (inside) 1

global (outside) 10 interface

clear xlate

Now test the connectivity. There shouldnt be any connectivity issues from inside->dmz.




This Discussion