Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1250
Views
0
Helpful
1
Replies

PIX DMZ address resolution

prpalmquist
Level 1
Level 1

‎12-19-2001 08:22 AM - edited ‎02-20-2020 09:56 PM

My external DNS servers are on a PIX DMZ interface and they support multiple Web and Application servers on the same phyical subnet. When one of these servers attempts to access a site ON THE SAME PHYSICAL SUBNET, the DNS query resolves to an external address and the connection fails.

I have an ALIAS statement but this does not work in this instance becuase the lookup does not go through the PIX. If I use NSLOOKUP and attach to a DNS server on the outside of the PIX, the ALIAS commands takes over and things work properly.

I suppose I could make these servers use someone elses DNS (external to the PIX), but I'd rather use my external DNS servers.

Any ideas?

0 Helpful
1 Reply 1

a-vazquez
Level 6
Level 6

‎12-26-2001 12:47 PM

The workaround is to reverse the alias addresses. See these docs for help. http://www.cisco.com/warp/public/110/pixfaq.shtml#Q15 and http://www.cisco.com/warp/public/110/alias.html

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card