cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
196
Views
0
Helpful
1
Replies

can't access web server

wanglei
Level 1
Level 1

i have two web server in intranet. i use two public ip translate in pix.

then i can only access one on web server from outside.another can't

follow is my config

access-list outside_access_in permit tcp any host 222.32.60.27

access-list outside_access_in permit tcp any host 222.32.60.26

access-list outside_access_in permit icmp any any

global (outside) 2 interface

nat (inside) 2 0.0.0.0 0.0.0.0 0 0

static (inside,outside) 222.32.60.26 192.168.100.10 netmask 255.255.255.255 0 0

static (inside,outside) 222.32.60.27 192.168.100.15 netmask 255.255.255.255 0 0

access-group outside_access_in in interface outside

route outside 0.0.0.0 0.0.0.0 222.32.60.24 1

i can't access server which ip is 222.32.60.27.when i access this server that did't through pix.it is ok.

i use show xlate command .and it display Glog 222.32.60.27 LOACL 192.168.100.15 ,but why i can't access it.

thank you!

1 Reply 1

sachinraja
Level 9
Level 9

Hi wang,

enter the command show access-list and check whether any hits are mentioned in for the acl.

Just check if you have enabled the IIS service on the second server (60.27) or try accessing the server from Inside network (try telnetting to port 80) and see if it works. Also restrict the access-list to specific ports, instead of opening full TCP access to the servers.

Hope this helps.

Raj

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: