Beast is right. I'll get on those lines tomorrow. Thank you so much. I know there are references to things that don't exist anymore. It will take a while to sift through them.
Do you mean that you want to join the IIS server that is in the DMZ to the domain that is in the "inside" protected security zone? This would require opening ports in the firewall between the IIS server and the domain controller. his requires several LDAP ports, kerberos, RPC, SMB for file...
Why does it have to be an A record? What you are describing is a CNAME (alias). Under the zone for the domainXYZ.local domain make a CNAME record intra and in the field for fqdn put intra.domainABC.com. Then intra.domainXYZ.local will resolve to intra.domainABC.com. As long as your dns server...
It probably won't matter if you delete it. Your default hosts file has an entry for localhost to 127.0.0.1. Hosts is read before dns so you'll get resolved anyway. But this isn't your problem. Currently you say that the AD DNS server forwards to the old DNS server? If this is true then can you...
I used different letters for the third octet to designate different subnets. Thanks.
:
PIX Version 6.3(5)
interface ethernet0 auto
interface ethernet1 auto
interface ethernet2 auto
interface ethernet3 100full
interface ethernet4 auto shutdown
interface ethernet5 auto shutdown
nameif ethernet0...
Thanks for taking the time Supergrrover, I'll remote in tomorrow and pull the config. I thought what I gave you might have been a little too cut up. This pix has been in production a long time and it contains a lot of legacy support that probably isn't needed anymore. I'm in the unfortunate...
will this help? I tried connecting to the Internet router from the offending servers by IP address and it failed too. So probably not DNS?
PIX Version 6.3(5)
interface ethernet0 auto
interface ethernet1 auto
interface ethernet2 auto
interface ethernet3 100full
interface ethernet4 auto shutdown...
access-group acl_out in interface outside
access-group acl_in in interface inside
access-group acl_dmz in interface dmz
We do have these above the new lines in the acl:
access-list acl_dmz deny tcp any 172.0.0.0 255.0.0.0 eq ftp
access-list acl_dmz deny tcp any 199.0.0.0 255.0.0.0 eq ftp...
I had routes for the subnets already in place. And I did add these statics:
static (dmz,outside) 199.241.8.115 199.241.8.115 netmask 255.255.255.255 0 0
static (inside,outside) 172.27.116.151 172.27.116.151 netmask 255.255.255.255 0 0
I'm veteran at networking but a PIX noob. Don't feel bad...
Cisco PIX Firewall Version 6.3(5)
Cisco PIX Device Manager Version 3.0(4)
Hardware: PIX-515E, 64 MB RAM, CPU Pentium II 433 MHz
I added the following lines to create a connection between a new web application and a MS SQL server and File server. The file server and database are on the inside...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.