• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 423
  • Last Modified:

Cisco Pix Route issue

Attempting to switch DSL providers.  I am not great with Cisco configs.  The PIX and configuration was previously existing to us taking on this client.  Just want to change the external ip address and route for the new DSL service.  Used "ip address outside" to set the outside address.   Can ping the DSL modem, so that is good.  Tried to change the route statement.  Typed in "route outside 0.0.0.0 0.0.0.0 66.222.222.222 1" where 66.222.222.222 is the ip address of the Gateway.   After setting the route statement and then typing in show routes, another route appeared  "route outside 66.222.222.216 255.255.255.248 66.222.222.222 1 CONNECT static".    Where does this route come from?  Am I missing a route that I need to add?  Though I can ping the modem, I cannot get beyond, i.e. ping the DNS server.

Any ideas?  

Thanks.
0
citechsolutions
Asked:
citechsolutions
  • 3
1 Solution
 
asavenerCommented:
"route outside 66.222.222.216 255.255.255.248 66.222.222.222 1 CONNECT static"
Directly-connected networks always appear in your routing table.  This behavior is by design.

I suspect that you have to remove the old routing statement.

Enter "show run | include route".  This will show all of the routing statements.  You will need to remove the old routing statement by negating it with the "no" statement.  (i.e., "no route outside 0.0.0.0 0.0.0.0 w.x.y.z")
0
 
asavenerCommented:
You may also need to change your "global" statement.  Do a "show run | include global" and make sure that the global statement uses the "interface" keyword, and does not reference your old IP address.
0
 
citechsolutionsAuthor Commented:
Thanks.  So the PIX automatically senses the connected network and adds the route?  Maybe there are other routes that were not showing that prevented us from reaching the internet.  We are onsite again on Monday and I will give this a try.
0
 
lrmooreCommented:
>Typed in "route outside 0.0.0.0 0.0.0.0 66.222.222.222 1
Did you also type in
  no route outside 0.0.0.0 0.0.0.0 x.x.x.x

Asavener is correct that you probably now have two default routes - both old one and new one.
Some commands change the existing entry when you add the same line with different information and some entries require removing the old one with "no" and then entering the new one. So by simply adding a new default route, you now have two of them and this will cause serious issues trying to access the Internet.
0
 
asavenerCommented:
"So the PIX automatically senses the connected network and adds the route?"
It senses that the interface is up, and it knows that you have assigned an IP address and subnet to the interface.  So it knows that the subnet containing 66.222.222.222.222 is directly connected to the outside interface.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now