Hi there, I have an issue I am trying to figure out.
I have a PIX 506E.
I have an inside network of 10.25.0.0/16
I have some static 1-to-1 translations setup for a webserver that is behind the pix, and I have rules setup to open port 80.
64.4.200.125 maps to 10.25.200.125
From the outside world, you can access http at 64.4.200.125
From the inside server, you can access http at 10.25.200.125
The problem is, from the inside, when you try to access the DNS name, which of course maps to 64.4.200.125, the system fails.
Basically, the issue is, you can't access the outside NAT IP, from inside the firewall. Is there a way to make this work? It just would make things MUCH EASIER when testing a website, to be able to access it directly from the server, as opposed to having to always go to a box outside the firewall to test.
I have a PIX 506E.
I have an inside network of 10.25.0.0/16
I have some static 1-to-1 translations setup for a webserver that is behind the pix, and I have rules setup to open port 80.
64.4.200.125 maps to 10.25.200.125
From the outside world, you can access http at 64.4.200.125
From the inside server, you can access http at 10.25.200.125
The problem is, from the inside, when you try to access the DNS name, which of course maps to 64.4.200.125, the system fails.
Basically, the issue is, you can't access the outside NAT IP, from inside the firewall. Is there a way to make this work? It just would make things MUCH EASIER when testing a website, to be able to access it directly from the server, as opposed to having to always go to a box outside the firewall to test.