I have a PIX 515 Firewall with 3 interfaces, (internal, Internet, and DMZ). I have opened conduits between one of the servers in the DMZ and one of the internal servers to allow for Active Directory replication between the two servers, as they are windows 2000 domain controllers. The internal server has a static IP assigned to it on the DMZ, The conduits are opened for all TCP and UDP traffic using their actual IPs and the static IP. (4 conduits opened, 2 between the DMZ server and the internal IP of the internal server, and 2 between the DMZ server and the static IP of the internal server).
The problem is that still the servers cannot replicate. The server in the DMZ still cannot browse the IP of the internal server, or ping it using its internal IP address. It can browse and ping using its static IP but cannot replicate using that IP.
The IPs of the required server are listed in the HOSTS file for name resolution.
Thanks for your support.