• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 332
  • Last Modified:

Configure pix 501 to access outside ip from inside

Ok, so we have a pix 501 firewall.  Inside we have 2 different web servers using 2 outside ip addresses.  I haven't been able to connect to either outside IP form any computer inside the network.  I was able to configure NAT to allow access, but it breaks all other internet access.  If anyone has any insight on how to configure this I would greatly appreciate it.
0
bhmahler
Asked:
bhmahler
1 Solution
 
Robert Sutton JrSenior Network ManagerCommented:
Could you post a copy of your complete config here please. You can remove/change your Public Ip information for your network before posting it here for your own protection. Thanks in advance.
0
 
RPPreacherCommented:
This is a pretty common issue

www.example.com is your outside name

When users resolve www.example.com, it resolves to aaa.bbb.ccc.ddd (public address)

The PIX does not allow traffic to hairpin (go out and in on same interface).

Easy solution.  Add DNS zone example.com to your internal DNS server.  Add A record www.example.com to resolve to INTERNAL IP.
0
 
Jan SpringerCommented:
0
 
bhmahlerAuthor Commented:
I went ahead and configured it this way.  Thanks
0

Featured Post

Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now