Re: broadband and PIX501

lkatsaros · ‎08-02-2004

I recently got comcast and have a motorola cable modem going into a linksys cable\DSL router.

i have configured the PIX501 to the linksys 10.10.1.254 inside and outside to comcast 24.12.243.8.

i can ping the outside from the PIX.

i have my network VLANed with 3 subnets via cisco routers.

i have DNS for comcast static on all workstations

and tried gateways pointing to PIX. and no connectivity.

if i bypass the PIX and use the gateway to the Linksys i have connectivity to the internet.

please advise on posible solution

jmia · ‎08-02-2004

I assume that you can ping the inside interface of the pix from your internal router?

Jay

lkatsaros · ‎08-02-2004

yes, i can ping inside interface

jmia · ‎08-02-2004

OK. Can you provide syslog messages when you try a connection from inside to outside via pix.

Do the following on the pix in config mode (to disable issue: no logging on)

logging on

logging buffer debug

sho log

and post here please.

Thanks / Jay

piseli · ‎08-17-2004

Do you have a PAT or NAT for your VLANs ?

Do have route outside to your Linksys Router ?

config example:

fixup protocol dns maximum-length 512

interface ethernet0 auto

interface ethernet1 auto

interface ethernet1 vlan9 physical

interface ethernet1 vlan1 logical

interface ethernet1 vlan2 logical

nameif ethernet0 outside security0

nameif ethernet1 inside security100

nameif vlan1 interne security90

nameif vlan2 public security50

global (outside) 1 interface

nat (inside) 1 0.0.0.0 0.0.0.0

nat (vlan1) 1 Your-VLAN1-Network 255.255.x.y

nat (vlan2) 1 Your-VLAN2-Network 255.255.x.y

route outside 0.0.0.0 0.0.0.0 Linksys-IP

hope it helps: