FWSM 3.1(7): DNS static causes lost connectivity

Unanswered Question
Oct 26th, 2007
User Badges:

Hi all

I've posted a few times before regarding and issue where I after a firewall migration suddenly loose external and internal access to services with static entires in my FWSM. The only hint I have is a show xlate where both the local and global IP is the external IP for the static.

Now, a few days ago I retried the migration and had no problems until I finally moved the statics for our two DNSes with authority over our domain. As soon as these statics were entered in the FWSM and traffic was redirected from our edge routers I saw the duplicate IPs in the logs and lost connectivity.

I've sent this to a few CCIE guys but no answer yet.

My only guess is something with DNS inspection, which is configured default on, but I need this feature for my outside NAT.

Is there something else that can be done?



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion