Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
444
Views
0
Helpful
6
Replies

DMZ write net problem

Go to solution
morganstanleylau
Level 1
Level 1

‎12-27-2004 06:49 PM - edited ‎03-09-2019 09:51 AM

Hi all ,

I got the problem is in DMZ write net the running-config image copy to the notebook , however is not working , my command is :

wr net 172.16.2.1:test

Than the error message is below:

TFTP write test at 172.16.2.1 on interface1

time out attempting to connect

[failed]

But i can in terminal ping the 172.16.2.1 , after that i in LAN ( 172.16.1.1) copy the running-config can done , using same notebook .

Is it the problem is binding interface1 on DMZ not interface2 ? should i change it ? pls advise

Stanley

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Patrick Iseli
Level 7
Level 7

‎12-28-2004 05:34 AM

What is the access-list and nat global or static config for that 2 interfaces?

sincerely

Patrick

View solution in original post

0 Helpful
6 Replies 6

Go to solution
Patrick Iseli
Level 7
Level 7

‎12-28-2004 05:34 AM

What is the access-list and nat global or static config for that 2 interfaces?

sincerely

Patrick

0 Helpful

Go to solution
morganstanleylau
Level 1
Level 1
In response to Patrick Iseli

‎12-28-2004 07:33 AM

Hi Patrick ,

Is it these issue effect the block the write net?

Stanley

0 Helpful

Go to solution
Patrick Iseli
Level 7
Level 7
In response to morganstanleylau

‎12-28-2004 08:46 AM

Usually it should work if all host have the PIX as default gateway. Do you have a router on that net that the write net does not work?

The easyest way to figure that out is enable logging on the PIX and check the loggs.

logging warning should be enough to see that.

conf t

logging on

logg buffer warning

show logg

sincerely

Patrick

0 Helpful

Go to solution
morganstanleylau
Level 1
Level 1
In response to Patrick Iseli

‎12-28-2004 07:49 PM

Hi Patrick ,

In my PIX all interface didn't have any router , just using cross-over CAT5 cable to connect PIX DMZ interface and notebook LAN interface , however i clear the static and acl , also didn't in DMZ write net , is it DMZ can't be using write net command ? pls advise , thx

Stanley

0 Helpful

Go to solution
morganstanleylau
Level 1
Level 1
In response to morganstanleylau

‎12-28-2004 09:57 PM

Hi Patrick,

The problem is solve now ,i add it this command after that can write net in DMZ

tftp-server DMZ 172.16.2.0 tftp

I don't why i need add this command can work , but i belive that before i didn't using this command also can work in DMZ . But anyway thanks you for your help .

Stanley

0 Helpful

Go to solution
Patrick Iseli
Level 7
Level 7
In response to morganstanleylau

‎12-29-2004 05:12 AM

Thanks for your feedback.

I did not know that TFTP uses just the internal interface if it is not defined with the: "tftp-server DMZ 172.16.2.0 tftp".

Cisco says = If not specified, an internal interface is assumed.

See Command reference: http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_command_reference_chapter09186a00801727ae.html#wp1026054

sincerely

Patrick

0 Helpful
Customers Also Viewed These Support Documents