Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 336
  • Last Modified:

Configure pix 501 to access outside ip from inside

Ok, so we have a pix 501 firewall.  Inside we have 2 different web servers using 2 outside ip addresses.  I haven't been able to connect to either outside IP form any computer inside the network.  I was able to configure NAT to allow access, but it breaks all other internet access.  If anyone has any insight on how to configure this I would greatly appreciate it.
0
bhmahler
Asked:
bhmahler
1 Solution
 
Robert Sutton JrSenior Network ManagerCommented:
Could you post a copy of your complete config here please. You can remove/change your Public Ip information for your network before posting it here for your own protection. Thanks in advance.
0
 
RPPreacherCommented:
This is a pretty common issue

www.example.com is your outside name

When users resolve www.example.com, it resolves to aaa.bbb.ccc.ddd (public address)

The PIX does not allow traffic to hairpin (go out and in on same interface).

Easy solution.  Add DNS zone example.com to your internal DNS server.  Add A record www.example.com to resolve to INTERNAL IP.
0
 
Jan SpringerCommented:
0
 
bhmahlerAuthor Commented:
I went ahead and configured it this way.  Thanks
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Firewall Management 201 with Professor Wool

In this whiteboard video, Professor Wool highlights the challenges, benefits and trade-offs of utilizing zero-touch automation for security policy change management. Watch and Learn!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now