Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Westi on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Inside connection issues

Status
Not open for further replies.
lost4life

lost4life

IS-IT--Management
Jul 2, 2003
33
US
I have installed a PIX525 into our working environment. I am having connection issues with servers that are on the same interface. I will be able to connect. Later I go back and I can't. I reboot the server and I am able to connect. I don't understand what is going on....

I also have a Oracle database server. I am able to connect but if I let the connection idle for a while (1/2 to an hour) then I get an error about not being connected to oracle.

The remote office who connect through an IPSec tunnel are not having any of these issues. Any suggestions on where to look for a solutions????
 
Sort by date Sort by votes
Are you trying to connect to their public IPs (NAT'd) or their real IPs?
 
Upvote 0 Downvote
I was told that by default, the firewall will answer arp request on all interface-proxyarp. So no matter what address I used - inside or outside, the firewall would answer. This seems to have been causing the timeout issue. Once I disable the firewall from answering arp request by Sysopt noproxyarp inside_interface the timeout issue was solved.
 
Upvote 0 Downvote
HI.

> I was told that by default, the firewall will answer arp request on all interface-proxyarp
It does that for addresses that have "alias" command, or wrong "static" statements.
Disabling the proxy arp on inside interface is OK, but you should also check if you have other errors or unneeded statements in your config.


Yizhar Hurwitz
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

mcisar
  • Locked
  • Question
Disable CHAP on PPPoE WAN connection
Replies
0
Views
194
mcisar
mcisar
Garbear
  • Locked
  • Question
TZ190 VPN Connection works but can't ping some IP's on either side
Replies
0
Views
131
Garbear
Garbear
Tommy_T
  • Locked
  • Question
Sonic wall - Have an issue remotely connectioning VNC and SMB (and AFP) to one of the 2 ISP circuits
Replies
1
Views
579
nnaarrnn
nnaarrnn
sudhakar346
  • Locked
  • Question
Cisco ASA inside to DMZ issue over public IP
Replies
2
Views
167
kythri
kythri
NoCoolHandle
  • Locked
  • Question
TLS 1.0 vrs TLS 1.1 vrs 1.2 connection strategy question
Replies
1
Views
135
ChrisHirst
ChrisHirst

Part and Inventory Search

Sponsor

Back
Top