I have this PIX 501 box and this is what I want to do:
Outside: connect it to a DSL modem (yahoo/ATT SpeedStream 5100). Use DHCP
Inside: connect to one or two PCs. Use static IP. The PIX box's inside IP: 192.168.1.1
The Yahoo's DNS server IP: 192.168.0.1
Could anybody provide a script to make this happen, so that I can run it on the pix.
Long story, short, when first bought it, the Cisco provided some tech support, somehow, they make it working. Now I am out of the support. I made all the reasonable efforts, but still can not make it working (access to the internet), even after I reset it to the factory's default setting.
Thanks for any help.
Try this config. Change the config to match your network.
ip address outside pppoe setroute
ip address inside 192.168.1.1 255.255.255.0
global (outside) 1 interface
nat (inside) 1 0.0.0.0 0.0.0.0 0 0
vpdn group NAME request dialout pppoe
vpdn group NAME localname DSLUSERNAME
vpdn group NAME ppp authentication pap
vpdn username DSLUSERNAME password DSLPASSWORD
dhcpd address 192.168.1.101-192.168.1.200 inside
dhcpd auto_config outside
dhcpd enable inside
Also, you will need to set your DSL modem to bridge mode for the 501 to work. AT&T doesn't seem to work with the pix 501 dynamically anymore.
I tried. But it does not work.
1) I set modem to Bridge mode.
2) I tried either set inside use DHCP or
set the PC as static:
default gateway: 192.168.1.1 (the pix501)
DNS Server:22.214.171.124 (does not work)
also tried: 192.168.0.1 (DSL Modem's IP)
Reset to factory default
Outside set to: PPPoE
leave IP and Mask blank
default gateway: I tried the followng separately:
leave blank or
126.96.36.199 (DSL's default gateway) or
188.8.131.52 (DSL modem's IP)
PPPoE user name password provided as they should be
Restart modem, PIX, computer.
Thanks to help.
Also, when set inside use the DHCP, what should be the:
(I tried the ISP's DNS Server IP, my computer and Pix's domain name, and leave WINS Server blank. None worked)
In Pix PDM configuration, should I specify:
If so, what should they be?
If not, should I just leave the fields blank?
The PPoE information should automatically be assigned. If it's set manually, it won't update when the IP changes at the next reboot.
Thank you all for the help.
What interestng is like this:
1)Sometimes, I can access the www.google.com. Once there I can even do a search. It is just that after I click on the result, it does not launch the site. EX. search --> www.cisco.com -->returned the site link --> click on the link --> it take forever... never been there.
2) I have two PCs connected to the inside interface of the Pix 501. Sometimes one PC was able to access the internet via the Pix --> DSL Modem-->Internet, but the other one can not access the internet. (Both PCs disabled the antivirus and fiewalls and use same method of settng the network connection: Obtan both IP and DNS dynamically.
Neverthless, I show you the configuration of the Pix in the Attachments hereunder.
Thanks to help.
The config looks good. It really shouldn't make a difference but when I compared my config, my timeout xlate was set for 3 hours and yours was set for 5 minutes.
timeout xlate 3:00:00
timeout xlate 0:05:00
Other than that, it looks good to me.
Thank you all.
I just wodnder if it has something to do with this Modem SpeedStream 5100. When it acts as a normal DSL modem, it works fine. After it is set to the Bridged Mode. It may not behave like bridge (I guess). This modem has 5 lights.
Otherwise it may have something to do with the Pix 501. This box is allowed to retore the original factory default setting. But who knows (there may be something internally interfere. I bought it just more than 1 year ago, should not be too old).
There could be some tricky pix codes, one line or two, which I missed.