Help! We have a PIX firewall, an HP server running Windows 2000 Terminal server & several PCs connected to a 3Com switch. A router is connected on the PIX¡¯s outside interface.
Problem: When users log in from their PCs (Windows XP Service Pack 1) to the domain, the first time each day, the login is extremely slow & their error logs all show they could not find the DC. Checking the the PC's ARP cache now you find there are two entries: 192.168.100.1 (PIX gateway) & 192.168.100.2 (Server)
Both these IPs are resolved to the PIX¡¯s MAC address If you now open a webpage & check the ARP cache again the PIX & server now are resolved to their respective MAC addresses. Logging out now (not rebooting) & logging back in is error-free.
Removing the NAT entry for the server & reloading the PIX stops the problem. Restoring the NAT entry again to allow external access brings the problem back again.
Any suggestions where the problem lies? The firewall configuration is attached.
do you need this command? I don't think it can possibly help matters. It would probably force the pix to expect 192.168.100.2 to be on the outside interface of the pix, and the pix might proxy arp for it, creating the problematic arp entries.
it appears that you otherwise have a fairly simply network with nat.
trying removing that command, clear xlate, and see if the problem persists
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...