Hi, Patrick.

Yes it solved the problem. Thanks alot. I am up and running. PDM manager works. I can receive pppoe address at the outside int. Now it's on to get my LAN be able to access the internet via my PIX.

my net is as: lan-2940-(D-link)-PIX-ADSL modem. I have set up PIX to give out DHCP via inside int. D-link wireless, is only to provide wifi access. All host on the 2940. Do i need to make explicity access list to permit access to the outside. From within the PIX i can ping the ip addr on the other side of ADSL modem.

I know i have to work a lot on this myself, so i am not awaiting further more answers. Although a kick start would be fine,along the study path. ;-)

Regards

/alf

No, you do not need to be explicit, with the Port Address Translation Networks, that it works but in security perspective it is allways better.

To access the the Internet from the inside to the outside interface you do not need an access-list. A higher security level (inside) can, if not blocked in an access-list on the inside interface, access the lower security levels (outside).

Example that allow all traffic from the inside interface to the internet.

global (outside) 1 interface

nat (inside) 1 0.0.0.0 0.0.0.0 0 0

route outside 0.0.0.0 0.0.0.0 Gateway 1

Example with defined networks:

global (outside) 1 interface

nat (inside) 1 192.168.1.0 255.255.255.0

nat (inside) 1 192.168.2.0 255.255.255.0

nat (inside) 1 10.10.10.0 255.255.255.0

route outside 0.0.0.0 0.0.0.0 Gateway 1

After chnaging the net settings do a:

clear xlate

# This will reset the Translation table (NAT)

See details in Cisco config guide 'Establishing Connectivity':

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_configuration_guide_chapter09186a0080172786.html

sincerely

Patrick

Hi

Thanks again, get it to work, but since i attend to use it in my home network, it was to noisy..

I would soon by an 501 i think.

This was fun, and thank's again for helping me out.

/alf