Internet access for wireless DMZ

Unanswered Question
Jun 15th, 2010
User Badges:

I have a wireless router designed to provide visitors just internet access. The wireless router is hanging of the firewall. Here is the configuration I have on the firewall:

ip address inside

global (outside) 1 interface
nat (inside) 1 0 0
route outside 1

dhcpd address inside

dhcpd lease 3600

Now I have the following probem. When a visitor connects to the wireless router, the get an IP fine, but they can't to the internet.

What do I have to do?


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
bellin Fri, 06/18/2010 - 08:55
User Badges:

Assuming that NAT is working correctly and the firewall is doing it's job with NAT, have you looked at DNS?  I would verify that you have the correct DNS addresses and that they too are allowed through your FW. 

You problem may be deeper than simple DNS issues, but I would start there.  No DNS = no Internet access.

abersven Sat, 06/19/2010 - 00:46
User Badges:

/* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-qformat:yes; mso-style-parent:""; mso-padding-alt:0cm 5.4pt 0cm 5.4pt; mso-para-margin-top:0cm; mso-para-margin-right:0cm; mso-para-margin-bottom:10.0pt; mso-para-margin-left:0cm; line-height:115%; mso-pagination:widow-orphan; font-size:11.0pt; font-family:"Calibri","sans-serif"; mso-ascii-font-family:Calibri; mso-ascii-theme-font:minor-latin; mso-hansi-font-family:Calibri; mso-hansi-theme-font:minor-latin; mso-bidi-font-family:"Times New Roman"; mso-bidi-theme-font:minor-bidi;}

I agree that this might be a DNS issue. Routing and NAT can be checked by i.e. ping



This Discussion



Trending Topics: Other Wireless Mobility

client could not be authenticated
Network Analysis Module (NAM) Products
Cisco 6500 nam
reason 440 driver failure
Cisco password cracker
Cisco Wireless mode