Solved

How can I enable access the Cisco PIX outside NAT interface?

Posted on 2006-11-02
8
205 Views
Last Modified: 2013-11-16
I setup one to one NAT from Cisco PIX, but I can't access or PING the ouside IP from internal network. Any Solution?
0
Comment
Question by:kennycpu
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
  • 2
  • +1
8 Comments
 
LVL 57

Expert Comment

by:Pete Long
ID: 17856823
outside ping is disabled by default

to turn it on toy need to add the following line to the config

icmp permit any echo outside

The ONLY way to manage a PIX from outside is via a VPN!! you need to enable a VPN to the firewall.
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 17857222
>I can't access or PING the ouside IP from internal network
Correct. This is by design of the pix.
0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17868461
What exactly are you trying to access with this ? Provide more information. Also mention if this nat you have created is resolved using external dns server.

Cheers,
Rajesh
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 

Author Comment

by:kennycpu
ID: 17882654
Of course I can ping outside IP from outside. I mean I cannot access the ouside NAT IP from inside network.
0
 

Author Comment

by:kennycpu
ID: 17882674
I am now using 2 DNS server, One for outside REAL IP setting. Another use for internal DNS server which set with internal LAN IP.
0
 
LVL 32

Accepted Solution

by:
rsivanandan earned 100 total points
ID: 17882701
If you have the dns server internally for this REAL ip, then there is nothing that can be done. It is per design as Lrmoore stated.

Cheers,
Rajesh
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 17914989
Why shoot the messenger with a C grade (actually the 2nd messenger) just because you don't like the answer?

0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17915049
Don't expect anybody to answer your future questions if this is the way you judge them. First of all this has to be split and grade C just because it can't be done ? I don't own Cisco.

0

Featured Post

Now Available: Firebox Cloud for AWS and FireboxV

Firebox Cloud brings the protection of WatchGuard’s leading Firebox UTM appliances to public cloud environments. It enables organizations to extend their security perimeter to protect business-critical assets in Amazon Web Services (AWS).

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How to access and configure Cisco Air LAP1142N 3 37
Cisco ISE or Windows NPS for RADIUS and 802.1x 2 76
Cannot connect to wireless using RADIUS 16 64
ASA 5505 packet drops 14 57
This article assumes you have at least one Cisco ASA or PIX configured with working internet and a non-dynamic, public, address on the outside interface. If you need instructions on how to enable your device for internet, or basic configuration info…
When speed and performance are vital to revenue, companies must have complete confidence in their cloud environment.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question