Hardcore PIX gurus only
Posted on 2004-04-24
Oks, This is for hardcore PIX firewall gurus. I have debugs enclosed in here
and I don't understand this behaviour of the PIX.
This has been taken with Kiwi syslog with level 7 traps (debugging level)
2004-04-23 15:41:59 Local4.Info 10.1.0.10 %PIX-6-305011: Built dynamic TCP
translation from inside:10.104.1.161/3753 to outside:22.214.171.124/5946
2004-04-23 15:41:59 Local4.Info 10.1.0.10 %PIX-6-302013: Built outbound TCP
connection 7906 for outside:126.96.36.199/80 (188.8.131.52/80) to
2004-04-23 15:41:59 Local4.Error 10.1.0.10 %PIX-3-106011: Deny inbound (No
xlate) tcp src inside:184.108.40.206/80 dst inside:10.104.1.161/3753
2004-04-23 15:41:59 Local4.Info 10.1.0.10 %PIX-6-110001: No route to
220.127.116.11 from 10.104.1.161
When a dynamic translation & a connection was made to the outside, why is
the response from the public internet site at 18.104.22.168 being denied?
This is a funny thing going on in my network where any computer assigned to
static IP:10.104.1.161 cannot access this particular public website and
other users in the 10.104.1.0 subnet can access this site fine excepting for
this one IP address. A reboot of the PIX doesn't help either.
I would welcome other suggestions for debugging but I am most concerned with
the above debug and don't understand why the PIX things there is no xlate
when it just made one the previous second.
Thx in advance!