Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
345
Views
0
Helpful
1
Replies

PIX Routing Issues with 2 Internet Routes

dgaunt
Level 1
Level 1

‎12-03-2004 06:34 AM - edited ‎02-20-2020 11:47 PM

We have just begun a changeover to a new ISP, So currently have 2 Internet Routes. Because we are also having to change our IP addressing, I have set up the second ISP connection via another Interface on the Firewall. We have a DMZ coming off a 3rd Interface, where all our Internet accessable servers reside. The challange I have run into, is this. Right now, DNS is pointing to the old server addressing, and thus all the traffic comes from the Old ISP connection. When I try to access a server via the new IP addressing, the package is dropped. I know the access-list is working properly, because I can see the packets are adding to the proper access list counts. But get the Following Message from my logs:

No translation group found for tcp src INET:XX.XX.XX.XX/XX(Home PC IP) dst DMZ:XX.XX.XX.XX/XX(Server's New IP).

These Servers are Staticly NATed. from both ISP interfaces, and I believe that the default gateway, currently pointed to the Old ISP may have something to do with the problem, but am unable to find a solution to the issue. I need both lines to be "accessable" for a time, as it is critical that the servers maintain 100% up time while the DNS changeover occur.

0 Helpful
1 Reply 1

jboyer
Level 1
Level 1

‎12-03-2004 12:48 PM

If you have two static translations to the same inside address, my guess is if you 'sho xlate' you will only see one of them. I don't believe you can xlate 2 outside addresses to a single inside address. Remove the first static and 'clear xlate' then try again.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card