Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
220
Views
0
Helpful
2
Replies

PIX520 upgrade from 5.2(5) to 6.2(3) No DNS or internet access

tleizear
Level 1
Level 1

‎01-15-2004 12:23 PM - edited ‎03-09-2019 06:08 AM

After upgrading our current PIX 520 w/failover to 6.2(5) we could not access the internet from the inside or dmz (seems to be a DNS problem), can't ping an outside address from a NAT address but can using a PAT address. HTTP Acces to the DMZ from the inside works fine. Are their any undocumented issues with using the config from a 5.2(5) on the new IOS level.

I have a test PIX setup with 6.2(3) loaded and have this working in a scaled down version, with the prodcution config loaded.

Any help wuold be appreciated.

Labels:
0 Helpful
2 Replies 2

nkhawaja
Cisco Employee
Cisco Employee

‎01-15-2004 05:05 PM

Hi,

We need to see your configs and syslog messages. Dont know and cant say much why DNS failed. The configs should work! You said, you can't ping an outside address from NAT address but can using a PAT address, what does that mean?

Thanks

Nadeem

0 Helpful

tleizear
Level 1
Level 1
In response to nkhawaja

‎01-20-2004 09:35 AM

Nadeem,

The problem is resolved, the internet router on the pix outside interface was rebooted and this cleared the problem. Apparently without re-booting the router had old cached entries for the production PIX when we put the test pix online and thus the reply's to DNS and pings were not being delivered to the correct interface.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents