Cannot access Internet from DMZ server

Unanswered Question
Apr 2nd, 2009

I have a mail server that is in the DMZ which is behind the Cisco 2621 router. I cannot get it to ping past the internal interface. There is a ip nat statement:

ip nat inside source list 10 interface Dialer1 overload

But this is not helping, the Dialer1 interface has "ip nat outside" in it's configuration. What else do I need to get this server to access the outside?

I've included the config file for the router.

Thanks

Attachment: 
I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
John Blakley Thu, 04/02/2009 - 07:43

What is the mail server ip address? If it's on the 192.168.6 or .7 subnet, you'll need to add "ip nat inside" on interface fa0/1. Then you'll need to add the 192.168.6.0 and 192.168.7.0 subnets to your access-list 10 that you're using to nat with.

HTH,

John

jonl711 Fri, 04/03/2009 - 04:03

The mail server is on 203.153.242.19 and 192.168.3.3, but the issue was having the 2 "ip nat inside" statements I took them out and all is good so far.

Actions

This Discussion