jfexchange
asked on
Opening up HTTP access to additional Webserver behind a PIX 515
Hi, I have a webserver which I just added to our network which I am trying to grant access to from the outside. I added the following lines to the pix configuration:
access-list outside_access_in permit tcp any host 61.19.161.13 eq www
static (inside,outside) 61.19.161.13 192.168.103.11 netmask 255.255.255.255 0 0
I have another webserver which is currently accessible which looks to be using the same syntax as this but with different external/internal addresses for other webserver; however this one that I just added is not accessible. Am I missing something from this config?
Thank you!
access-list outside_access_in permit tcp any host 61.19.161.13 eq www
static (inside,outside) 61.19.161.13 192.168.103.11 netmask 255.255.255.255 0 0
I have another webserver which is currently accessible which looks to be using the same syntax as this but with different external/internal addresses for other webserver; however this one that I just added is not accessible. Am I missing something from this config?
Thank you!
ASKER
Thanks for the quick response, I did verify the IP and clear the xlate. I didn't think I need to re-apply the access-group on the pix, but I just did that now and recleared the xlate and it still is not working.
Could it be anything else?
I was given the external IP address to use by someone else, I think maybe it is not valid?
Could it be anything else?
I was given the external IP address to use by someone else, I think maybe it is not valid?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Did you re-apply the access-group to the interface?
pixfirewall(config)#clear xlate
pixfirewall(config)#access
Did you verify the correct IP address, subnet mask and default gateway on the server? Does it point to the PIX IP as its default gateway?