I have 2 servers (1 email server and a reg. file server) in the DMZ of a PIX520, 1 NT and 1 2000. I did a AD/2000 migration of our domain controller from NT, and now the servers in the DMZ cannot authenicate to the DC. I put in all the conduit statements needed by 2000 but it still doesnt work. All machines on the inside work fine. Also, i can ping across to all the machines and also resolve domain names using ping -a etc, cleared arp cache and Xlate as well. When the DC was a NT machine everything worked. Any help is appreciated.
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
PIX 520 DMZ problems after2000/AD Migration.
- Thread starter fe0
- Start date
Try syslogging and see what gets denied. That should indicate any other holes that need to be openned up. Also try converting to access-lists (everybody's doing it!!!). If that still doesn't help, try posting and config for us to check.
-gbiello
-gbiello
- Status
Similar threads
- Locked
- Question
- Locked
- Question
- Locked
- Question