Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
771
Views
0
Helpful
1
Replies

PIX DMZ-Inside servers

ereinoehl
Level 1
Level 1

‎07-23-2002 07:28 AM - edited ‎02-20-2020 10:10 PM

I have a PIX 520, running 5.3(1) with the webserver in a DMZ and SQL server on the inside Interface. Everything was working fine until yesterday, no changes were made, but traffic trough the PIX was spotty at best. I can now access the Internet from the Inside and the DMZ, and I can access the web-server from the outside world. The problem I am running into is that the web server sends data back to the SQL server for on-line ordering, and that is currentl not working. I cannot ping from the inside to the DMZ, and the reverse is the same.

0 Helpful
1 Reply 1

gfullage
Cisco Employee
Cisco Employee

‎07-23-2002 10:44 PM

If you're trying to ping from any interface to any interface, you need to open up a conduit/ACL for that, as the PIX doesn't allow ICMP messages thru by default (it doesn't create a connection for it since it's not UDP/TCP based).

For the SQL server problem, do you see any errors in the PIX syslogs when the SQL server tries to contact the web server? If you see any denies, then you haven't opened the right access thru the PIX to get it to work.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card