Hi experts,

I'm using IE configured with proxy (the proxy's IP is public IP address). If my LAN is directly connected to a router (running RFC1483 bridging), I can get my address bridged and then connect to the internet.

But, after I use PIX:

LAN (192.168.10.0)==PIX==(10.240.41.11)router == net

I cannot connect to the net anymore. I tried using PAT for outbound connection, but the router cannot NATted it anymore. So, I'm using a static translation like this:

Static(inside,outside) 192.168.10.0 192.168.10.0

I see from debug ip nat detail, the packet is being translated like usual. But, it seems that the reply packet from the proxy (203.81.71.237) doesn't reach back to my computer.

*Mar 3 15:47:21.305: NAT: Allocated Port for 192.168.10.77 -> 10.240.41.11: wanted 1359 got 1359

*Mar 3 15:47:21.305: NAT: i: tcp (192.168.10.77, 1359) -> (203.81.71.237, 8080) [2599]

*Mar 3 15:47:21.305: NAT: s=192.168.10.77->10.240.41.11, d=203.81.71.237 [2599]

*Mar 3 15:47:24.310: NAT*: i: tcp (192.168.10.77, 1359) -> (203.81.71.237, 8080) [2601]

*Mar 3 15:47:24.310: NAT*: s=192.168.10.77->10.240.41.11, d=203.81.71.237 [2601]

*Mar 3 15:47:24.330: NAT*: o: tcp (203.81.71.237, 8080) -> (10.240.41.11, 1359) [52837]

*Mar 3 15:47:24.330: NAT*: s=203.81.71.237, d=10.240.41.11->192.168.10.77 [52837]

*Mar 3 15:47:27.323: NAT*: o: tcp (203.81.71.237, 8080) -> (10.240.41.11, 1359) [55225]

*Mar 3 15:47:27.323: NAT*: s=203.81.71.237, d=10.240.41.11->192.168.10.77 [55225]

I even allow any packets from 203.81.71.237 to 192.168.10.0/24, but still can get it right.

Can you point me what's wrong?

Thanks in advance.

Makka