Dropping Packets?

Unanswered Question
Mar 6th, 2008

We are having a problem with a couple of pieces of equipment on our network not responding to ping and/or dropping it's connection to the server. All this started just after we installed our PIX 501, so i suspect it may be dropping packets from the INSIDE clients, can somebody review this config report and tell me if there are any settings that may hinder normal internal LAN traffic? Also, I set it up so PING should work/route through the PIX and back, but that doesn't seem to be working either.


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
jsjerkins Thu, 03/06/2008 - 10:36

It might be a nat problem but not to sure, try setting some deny statements in you ACL for nat to keep the source address from being changed and do some pings from behind the firewall. I know this is a problem in site to site VPN's allot of the time so maybe you will get lucky. access-list inside_outbound_nat0_acl deny ip a.b.c.d~~~>(source or host you are pinging from) this is assuming that all traffic is hitting the pix first.

molliesauers Mon, 03/10/2008 - 16:37

Well, i've narrowed down the problem to the PIX, i'm reviewing the ACL per your suggestion. I'll let you know what I find.


This Discussion