Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Strange Firewall / L3 problem

Hi,

I recently taken over a site where the default reouter is layer3 switch (192.168.32.2 /24). A proxy firewall was installed previous (Borderware) which worked fine. However switching to a pix firewall (192.168.32.1) seems to have caused a problems for a certain number of client pc's - oddly enough some are working some are not.

The default route of the L3 switch is the firewall. ICMP redirects were enabled on the L3 switch, so routes were being added on the client workstations. This has been disabled since. Some client workstations can access external resources, but some cannot. There is not apparent difference in builds of the PC's, it would appear to be a network problem. However I would expect a network problem to impact the same accross the board. Any ideas on where to start on diagnosing the problem?

Thanks.

1 REPLY
Silver

Re: Strange Firewall / L3 problem

I would start with a traceroute from non-working clients. See the logs in FW. See if NAT is covering all the networks.

Thanks.

93
Views
0
Helpful
1
Replies