jsop
asked on
Newly installed Cisco PIX506E cannot connect to internal web site via www usage
I recently installed a new PIX506E 6.3. Internet and VPN access are working.
We have an SSL web site that we host internally. We used to be able to access this
web site internally via www.website.com, until I setup the new PIX. Internet users can access it via www.website.com without incident as usual.
The only way we can currently access the web site internally now is by using the server name. I looked over the previous PIX config, and I have the new config matching almost idenical, with a couple of minor excepions.
One exception is we no longer allow another company to have access to our private network, so that portion was removed from the config. The other item that is not in the current config is noted below.
rip inside passive version 1
rip inside default version 1
When we were running the other PIX, we could access the internal web site just as internet users would, so I don't want to look at using the hosts file. What changed that I can't access the internal web site by typing www.website.com? As I mentioned above, internet users can access it just fine. Nothing in DNS was changed (worked fine on previous Cisco PIX506).
Any thoughts?
Thank you.
JS
We have an SSL web site that we host internally. We used to be able to access this
web site internally via www.website.com, until I setup the new PIX. Internet users can access it via www.website.com without incident as usual.
The only way we can currently access the web site internally now is by using the server name. I looked over the previous PIX config, and I have the new config matching almost idenical, with a couple of minor excepions.
One exception is we no longer allow another company to have access to our private network, so that portion was removed from the config. The other item that is not in the current config is noted below.
rip inside passive version 1
rip inside default version 1
When we were running the other PIX, we could access the internal web site just as internet users would, so I don't want to look at using the hosts file. What changed that I can't access the internal web site by typing www.website.com? As I mentioned above, internet users can access it just fine. Nothing in DNS was changed (worked fine on previous Cisco PIX506).
Any thoughts?
Thank you.
JS
RIP is a routing protocol - maybe your internal web server is on a different network that your new pix506 doesn't know about because you removed the rip statements.
ASKER
Thanks for the reply. The web site that I am trying to connect to is hosted on one of our internal servers. I can access it by http://servername. We never could access it via http://1.2.3.4. Trying to access it via www used to work with our old PIX506, but now with the PIX506E, www does not work for us internally. Internet users can access as usual.
I reimplemented the rip inside passive version 1, and default version 1. No difference yet.
I reimplemented the rip inside passive version 1, and default version 1. No difference yet.
ASKER
Still no resolution.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
If from inside could you access the server by IP? http://1.2.3.4 (no www).?