Smart questions
Smart answers
Smart people
INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Member Login
Remember Me
Forgot Password?
Join Us!

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips now!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!
Join Tek-Tips
*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

LINK TO THIS FORUM!

Add Stickiness To Your Site By Linking To This Professionally Managed Technical Forum.
Just copy and paste the
code below into your site.

Tek-Tips LinkedIn® Group

Partner With Us!

"Best Of Breed" Forums Add Stickiness To Your Site
Partner Button
(Download This Button Today!)

Feedback

"...I think the forum is a great idea, especially for those of us in consulting engineering. Keep up the good work!..."
More...

Geography

Where in the world do Tek-Tips members come from?
Click Here To Find Out!

Tek-Tips Shirts!

Get Tek-Tips Swag
Get your
Tek-Tips Forums
SWAG here!
Home > Forums > Communications Rack > Networking > Cisco: Routers Forum

PIX 501 6.3 No internet from server after Static NAT

thread557-1687662
Read More Threads Like This One
nortelneo (IS/IT--Management)
8 Jul 12 4:59
Hi,
I have setup a PIX 501 in my lab, with a static nat to an internal test server. But I am unable to browse the internet from this server. I have removed the global (outside) interface and nat(inside)1 0 0 commands. I am not able to ping 4.2.2.2 from the server, but I can from the PIX. If i remove the static nat command and add the global and nat commands, I will be able to browse. What am I missing?
I have created access-lists as follows
ip address outside B.B.B.B 255.255.255.0
ip address inside A.A.A.A 255.255.255.0
access-list acl_out permit icmp any any echo-reply
access-list acl_out permit icmp any host A.A.A.A
access-list acl_in permit icmp host B.B.B.B any
access-list acl_in permit tcp any eq www
access-list acl_in permit tcp any any eq domain
access-list acl_in permit udp any any eq domain
access-list acl_in permit tcp any eq domain any
access-list acl_in permit udp any eq domain any
static(inside,outside) B.B.B.B A.A.A.a netmask 255.255.255.255 0 0
access-group acl_out in interface outside
access-group acl_in in interface inside

Thank you.Regards.
Read More Threads Like This One

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members!

Back To Forum

Back To Cisco: Routers

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close