Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
577
Views
5
Helpful
5
Replies

DMZ servers unable to reach internet

fadarekehinde
Level 1
Level 1

‎06-07-2012 08:15 AM - edited ‎03-11-2019 04:16 PM

I had the ip address conflict problem on the dmz network, i removed proxyarp on the dmz interface on the firewall it sorted it. Another issue i am experiencing right now is that my natted DMZ servers are unable to reach the internet. what could be responsible?

Labels:
0 Helpful
5 Replies 5

colquist
Level 1
Level 1

‎06-07-2012 09:17 AM

Can you post your config?

0 Helpful

fadarekehinde
Level 1
Level 1
In response to colquist

‎06-07-2012 09:24 AM


asa

0 Helpful

deyster94
Level 5
Level 5
In response to fadarekehinde

‎06-07-2012 09:43 AM

Are these the only servers in the DMZ:

SMTPserver

IAG

10.13.199.24

BNG_UAG_INT

If there are more, then you will need a nat (dmz) 1 statement for them as well.

0 Helpful

fadarekehinde
Level 1
Level 1
In response to deyster94

‎06-07-2012 09:49 AM

These are the servers we have for now and creating more on the Hyper-v. i will try that as well.

colquist
Level 1
Level 1
In response to fadarekehinde

‎06-07-2012 09:44 AM

try adding the following two lines to the end of your DMZ ACL

access-list dmz-in extended deny ip 10.0.0.0 255.0.0.0 10.0.0.0 255.0.0.0

access-list dmz-in extended permit ip any any

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card