topic Re: PIX and Internal DNS in Network Security

PIX and Internal DNS

dave.easton — Fri, 21 Feb 2020 06:59:11 GMT

Have a simple PIX network setup, basically just allowing Internet Access and some limited VPN stuff. There is only one computer on the inside that cannot see outside, and that is the domain PDC which is also running DNS and WINS. I think my problems are DNS related, since every other PC on the LAN can get out, and names appear to be resoved to IPs on the PDC. It just can't get out itself. Is this a job for 'alias' maybe? Thanks....

Re: PIX and Internal DNS

gfullage — Thu, 11 Sep 2003 03:17:20 GMT

Doubtful it's alias. you need to check the syslog output to see what's happening when this DNS server tries to go out. Enable the following:

logging on

logging buffer debug

Try and browse to some device from the DNS server, then do:

sho logg

and you should see some denied traffic or failed message, something that'll indicate the problem. If you can't see it send us the log and we'll have a look.