Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
360
Views
0
Helpful
6
Replies

internet stopped working suddently through firewall,

saviopereira
Level 1
Level 1

‎05-09-2004 03:26 AM - edited ‎03-09-2019 07:19 AM

i was accessing internet throught pix515e firewall ,internet was slow so i changed the adsl router and configured the new ADSL router same as old but after replacing the router i am not able to access the internet through firewall ,

PIX Version 6.1(2)

nameif ethernet0 outside security0

nameif ethernet1 inside security100

enable password xxxxx

passwd xxxx

hostname pixfirewall

domain-name sheraton.com

fixup protocol ftp 21

fixup protocol http 80

fixup protocol h323 1720

fixup protocol rsh 514

fixup protocol rtsp 554

fixup protocol smtp 25

fixup protocol sqlnet 1521

fixup protocol sip 5060

fixup protocol skinny 2000

names

access-list 1 permit ip any any

pager lines 24

interface ethernet0 auto

interface ethernet1 auto

mtu outside 1500

mtu inside 1500

ip address outside 192.168.0.5 255.255.255.0

ip address inside 10.109.116.11 255.255.252.0

ip audit info action alarm

ip audit attack action alarm

pdm history enable

arp timeout 14400

nat (inside) 0 access-list 1

route outside 0.0.0.0 0.0.0.0 192.168.0.11 1

timeout xlate 3:00:00

timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h323 0:05:00 si

p 0:30:00 sip_media 0:02:00

timeout uauth 0:05:00 absolute

aaa-server TACACS+ protocol tacacs+

aaa-server RADIUS protocol radius

http server enable

http 10.109.116.11 255.255.255.255 inside

no snmp-server location

no snmp-server contact

snmp-server community public

no snmp-server enable traps

floodguard enable

no sysopt route dnat

telnet 10.109.116.0 255.255.252.0 inside

telnet timeout 5

ssh timeout 5

terminal width 80

Cryptochecksum:xxxxx

pixfirewall#

Labels:
0 Helpful
6 Replies 6

gfullage
Cisco Employee
Cisco Employee

‎05-09-2004 01:20 PM

If the new router has the same IP address as the old one, then you might need to clear the ARP table on the PIX (although it's probably cleared itself by the time I write this).

Can you ping the router from the PIX? If not then the ARP table is definately your problem.

0 Helpful

saviopereira
Level 1
Level 1
In response to gfullage

‎05-09-2004 06:54 PM

yes i am able to ping to the ADSL router as well as ISP dns server

0 Helpful

sachinraja
Level 9
Level 9
In response to saviopereira

‎05-10-2004 03:03 AM

Hi Savio,

Are u using any proxy server ? Is there a reverse route to the Private IP block on the router, pointing to the firewall outside IP ?

is there any blocking on the router ?

if not http, try doing a ftp and see if the routing is fine. try ftping to cisco.com.

0 Helpful

saviopereira
Level 1
Level 1
In response to sachinraja

‎05-10-2004 08:40 PM

thanks sachinraja,

there is no blocking on the router it is a SPEEDtouch adsl router given by ISP , for pix i am able to ping to ISP DNS

0 Helpful

sachin
Level 1
Level 1

‎05-10-2004 04:08 AM

Check the router configuration twice, as you said u have changed router and no config change on firewall so some thing missing on router side only.

0 Helpful

saviopereira
Level 1
Level 1
In response to sachin

‎05-18-2004 09:19 AM

i have checked the router setttings and found route was not added on router, i added the route on router

and internet started working

thankyou

0 Helpful
Customers Also Viewed These Support Documents