Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

can't access web server

i have two web server in intranet. i use two public ip translate in pix.

then i can only access one on web server from outside.another can't

follow is my config

access-list outside_access_in permit tcp any host 222.32.60.27

access-list outside_access_in permit tcp any host 222.32.60.26

access-list outside_access_in permit icmp any any

global (outside) 2 interface

nat (inside) 2 0.0.0.0 0.0.0.0 0 0

static (inside,outside) 222.32.60.26 192.168.100.10 netmask 255.255.255.255 0 0

static (inside,outside) 222.32.60.27 192.168.100.15 netmask 255.255.255.255 0 0

access-group outside_access_in in interface outside

route outside 0.0.0.0 0.0.0.0 222.32.60.24 1

i can't access server which ip is 222.32.60.27.when i access this server that did't through pix.it is ok.

i use show xlate command .and it display Glog 222.32.60.27 LOACL 192.168.100.15 ,but why i can't access it.

thank you!

1 REPLY

Re: can't access web server

Hi wang,

enter the command show access-list and check whether any hits are mentioned in for the acl.

Just check if you have enabled the IIS service on the second server (60.27) or try accessing the server from Inside network (try telnetting to port 80) and see if it works. Also restrict the access-list to specific ports, instead of opening full TCP access to the servers.

Hope this helps.

Raj

121
Views
0
Helpful
1
Replies
CreatePlease login to create content