Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
286
Views
0
Helpful
1
Replies

Routing Question - What Am I Missing

js358
Level 1
Level 1

‎09-28-2005 07:55 AM - edited ‎03-03-2019 10:37 AM

Hello All:

Have a 3660 with 3 T1 multilink line. Presently, have one internal subnet using this router for internet.

Have FA0/1 10.0.2.1 with IP nat inside routing out 0.0.0.0 0.0.0.0 153.x.x.x

This is 2x segment gateway

This is working fine.

What I am trying to do is add another subnet 3x and firewall to use this router as well.

3660 - FA1/2 65.x.x.1 attached to WAN port on Firewall 65.x.x.2.

Firewall LAN 10.0.3.1 - gateway for 3x

I can get out from inside to internet but I cannot run any services behind firewall such as DNS and have them accessible from internet, despite correct rules on firewall.

I can ping from the firewall (65.x.x.2) to FA1/1 (65.x.x.1) on the router but cannot ping from FA1/1 to firewall.

Any ideas as to why this is. If I sh arp on router, it sees the FW interface 65.x.x.2

ANy help would be appreciated.

Labels:
0 Helpful
1 Reply 1

naveen.venkatesh
Level 1
Level 1

‎09-29-2005 05:06 AM

You should be able to ping the firewall ipaddress from the router. Can you share the specific rules of your firewall related to Inbound traffic from the router and rules related to DNS.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card