I have outside traffic accessing my Mail (25,110) and my Web server(80) but if an iside user trys to access the web site through the internet using the gateway on the pix, he/she can't but if I dial up to the internet using AOL or ay other ISP then I have no problem.
What can I do to have internal user accessing aour web site through the gateway internet on the pix.
Is there a way for the 2600?? I am having the same issue, only for a 2600. The 'alias' command is only for PIX, right?
What can I do on the 2600? It's not so much for usability, but for troubleshooting. I can use my DNS server to resolve the addresses before they get to my firewall. But, if I wanted to check to see if port 25 is really open to the outside world, I have to dial up to AOL or something. Very frustrating.
If you are running DNS inside your network, you can essentially fool the internal users to point to the inside address of the webserver. If not, the problem lies in the fact that your internal machine goes out through the pix, resolves the address and then tries to get back in (like with a ping). this creates a loop - going out, coming back to another machine and then expecting to go back out and somehow reach you in the process to return your ping request. Use of the alias command - http://www.cisco.com/warp/public/110/alias.html, will allow the pix to "replace" any dns request that matches something on your inside network with the correct internal address. Its a cheat, but it works.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...