Solved

Newly installed Cisco PIX506E cannot connect to internal web site via www usage

Posted on 2008-06-13
5
248 Views
Last Modified: 2010-04-12
I recently installed a new PIX506E 6.3. Internet and VPN access are working.

We have an SSL web site that we host internally. We used to be able to access this
web site internally via www.website.com, until I setup the new PIX. Internet users can access it via www.website.com without incident as usual.

The only way we can currently access the web site internally now is by using the server name. I looked over the previous PIX config, and I have the new config matching almost idenical, with a couple of minor excepions.

One exception is we no longer allow another company to have access to our private network, so that portion was removed from the config. The other item that is not in the current config is noted below.

rip inside passive version 1
rip inside default version 1

When we were running the other PIX, we could access the internal web site just as internet users would, so I don't want to look at using the hosts file. What changed that I can't access the internal web site by typing www.website.com? As I mentioned above, internet users can access it just fine. Nothing in DNS was changed (worked fine on previous Cisco PIX506).

Any thoughts?

Thank you.
JS
0
Comment
Question by:jsop
  • 3
  • 2
5 Comments
 
LVL 6

Expert Comment

by:clearacid
ID: 21780193
Could you clarify if you are trying to access an internal webserver from inside or outside the network?

If from inside could you access the server by IP?  http://1.2.3.4 (no www).?
0
 
LVL 6

Expert Comment

by:clearacid
ID: 21780216
RIP is a routing protocol - maybe your internal web server is on a different network that your new pix506 doesn't know about because you removed the rip statements.  
0
 

Author Comment

by:jsop
ID: 21780586
Thanks for the reply. The web site that I am trying to connect to is hosted on one of our internal servers. I can access it by http://servername. We never could access it via http://1.2.3.4. Trying to access it via www used to work with our old PIX506, but now with the PIX506E, www does not work for us internally. Internet users can access as usual.

I reimplemented the rip inside passive version 1, and default version 1. No difference yet.
0
 

Author Comment

by:jsop
ID: 21813005
Still no resolution.
0
 

Accepted Solution

by:
jsop earned 0 total points
ID: 21816525
The issue has been resolved. I ended up implementing a hosts file. We did not use one with the Old PIX506, but it was the only way I could get access to the server as we once had.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
Overview The Cisco PIX 501, PIX 506e, ASA 5505 and ASA 5510 (most if not all of this information will be relevant to the PIX 515e but I do not have a working configuration handy to verify the validity) are primarily used within small to medium busi…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now