My Pix is not forwarding to my Websense server, for URL filtering
I worked with a tech from Websense, that assured me that the websense server is configured correctly.
However I'm going to include some notes on it as well.
The Websense server has two nics.
NIC 1: Static private address: no gateway
(Everyone on private network can ping this address)
NIC 2: Static registered IP address on the same network as my router and pix, pointing to my router as the gateway.
This is also my FTP Server, which I have no problem hitting from the outside.
Below is part 1 of my pix config, any help resolving why my pix is not filtering with my websense server would be greatly appreciated.
PIX Version 6.3(3)
interface ethernet0 auto
interface ethernet1 auto
nameif ethernet0 outside security0
nameif ethernet1 inside security100
enable password ww1l5Q92YaRRQxfM encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
clock timezone EST -5
clock summer-time EDT recurring
fixup protocol dns maximum-length 512
fixup protocol ftp 21
fixup protocol h323 h225 1720
fixup protocol h323 ras 1718-1719
fixup protocol http 80
fixup protocol icmp error
fixup protocol rsh 514
fixup protocol rtsp 554
fixup protocol sip 5060
fixup protocol sip udp 5060
fixup protocol skinny 2000
fixup protocol smtp 25
fixup protocol sqlnet 1521
fixup protocol tftp 69
name 172.16.0.0 Ligonier
name 10.4.0.0 NTC2
name 126.96.36.199 CMS-Support
name 10.3.0.0 CassCity
name 192.168.1.251 FTPServer
object-group service CMS-Support tcp-udp
port-object range 397 397
object-group service jGo tcp
port-object eq 449
port-object eq telnet
port-object range 8870 8876
port-object eq 446
port-object eq www
Where is the websense server located? Based on your IP Address, it looks like the server is located on the outside. So, the below statement needs to be corrected.
url-server (inside) vendor websense host 188.8.131.52 timeout 5 protocol TCP version 4
url-server (outside) vendor websense host 184.108.40.206 timeout 5 protocol TCP version 4
*Pls rate if it helps*