Internet access for wireless DMZ

Unanswered Question
Jun 15th, 2010

I have a wireless router designed to provide visitors just internet access. The wireless router is hanging of the firewall. Here is the configuration I have on the firewall:

ip address inside 10.150.179.2 255.255.255.0

global (outside) 1 interface
nat (inside) 1 0.0.0.0 0.0.0.0 0 0
route outside 0.0.0.0 0.0.0.0 64.163.67.201 1

dhcpd address 10.150.179.101-10.149.178.130 inside

dhcpd lease 3600

Now I have the following probem. When a visitor connects to the wireless router, the get an IP fine, but they can't to the internet.

What do I have to do?

Thanks.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
bellin Fri, 06/18/2010 - 08:55

Assuming that NAT is working correctly and the firewall is doing it's job with NAT, have you looked at DNS?  I would verify that you have the correct DNS addresses and that they too are allowed through your FW. 

You problem may be deeper than simple DNS issues, but I would start there.  No DNS = no Internet access.

abersven Sat, 06/19/2010 - 00:46

/* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-qformat:yes; mso-style-parent:""; mso-padding-alt:0cm 5.4pt 0cm 5.4pt; mso-para-margin-top:0cm; mso-para-margin-right:0cm; mso-para-margin-bottom:10.0pt; mso-para-margin-left:0cm; line-height:115%; mso-pagination:widow-orphan; font-size:11.0pt; font-family:"Calibri","sans-serif"; mso-ascii-font-family:Calibri; mso-ascii-theme-font:minor-latin; mso-hansi-font-family:Calibri; mso-hansi-theme-font:minor-latin; mso-bidi-font-family:"Times New Roman"; mso-bidi-theme-font:minor-bidi;}

I agree that this might be a DNS issue. Routing and NAT can be checked by i.e. ping 64.163.67.201.

/André

Actions

This Discussion

 

 

Trending Topics: Other Wireless Mobility

client could not be authenticated
Network Analysis Module (NAM) Products
Cisco 6500 nam
reason 440 driver failure
Cisco password cracker
Cisco Wireless mode