Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Set up pix firewall Pc's cant see inside interface. firewall cant see pc's?

Hay guys iam very new to the Pix firewall...

i had to work on a pix firewall 515 with ios 5.2 the other day

all i had to do was run the internet adsl modem on the outside and just a hub on the inside with afew pc's

but i couldnt get it to work

the problem was not the outside as i just did a dhcp setroute command to automatically grab the modem address as it is dynamically assigned

the address was somthing like 203.64.25.254

once i set that up i could ping the outside interface and the modem so that was fine

the MAJOR problem was that in my inside interface 192.168.0.1 i could ping the interface

but i couldnt ping any computers on it, non of the computers could ping the interface i did soo many things to get it working but still i even unpluged the outside interface etc

i dont know if iam missing somthing but do both interfaces have to be up and working in order to be able to ping the side one?

iam not sure as iam new to the pix

my configuration was preety simple

nameif ethernet0 outside security0

nameif ethernet1 inside security100

interface ethernet0 auto

interface ethernet1 auto

ip address outside dhcp setroute

ip address inside 192.168.0.1 255.255.255.0

hostname pixfirewall

nat (inside) 1 0 0

i also tried nat with a specfic range

the other little problem i had was that the line protocol was down somtimes i think this was becuase it hadnt refreshed so i just typed in clear int and it was fine? should this happen?

also wanted to ask with the pix is there any command that shows everything like a show run on a router

i know about the show int ip etc but yea

But basically i just wanted to ask if that configuration should work

and also wanted to ask do i need to put in anything else in or for those pc's to connect to the net thanks a lot

4 REPLIES
New Member

Re: Set up pix firewall Pc's cant see inside interface. firewall

to view the configuration, type "write terminal" and to save the config type "write memory".

you have listed the IP addresses that you wish to NAT, but not the address that you wish to hide them behind. If you want to hide them behind the outside interface IP address, type in the following - "global (outside) 1 interface".

Try that and get back to me.

Good luck

Steve

New Member

Re: Set up pix firewall Pc's cant see inside interface. firewall

Thanks for the info steve i will do it asap but just wanted to ask with out that command i should still be able to ping the inside interface from the pc's connected to it?

with out that command i shouldnt be able to ping the outside interface from a pc connected to the inside interface well ill try it hopefully it will work =)

Thanks again

New Member

Re: Set up pix firewall Pc's cant see inside interface. firewall

If your line protocol is going down on the inside interface then you probably have a problem downstream from your PIX. Check the cable between your pix and hub? Cross-over?

New Member

Re: Set up pix firewall Pc's cant see inside interface. firewall

from the inside interface to the hub it should only be a straght through cable shouldnt it

and from the outside interface to the modem it should be a cross over cable

?

141
Views
0
Helpful
4
Replies
CreatePlease to create content