12-16-2004 11:43 AM - edited 02-21-2020 01:30 PM
I have a remote office connected back into this site via a site-to-site VPN between two PIX 501 firewalls. I added a printer that works off of an external jet direct server in the remote office. I can ping it from any other computer in that office, but not from the PIX in that office. I can ping every other device in that office from that Pix, and from any computer in this office. But I can not ping the new print server from this office. This keeps me from being able to set it up on servers located in this office.
Is it possible that the remote office PIX is blocking that specific ip/mac address? If so, how do I clear the blockage.
Any help would be appreciated.
Ron Rollins
12-16-2004 05:25 PM
it sounds like the jet direct does not have its default gateway set - so it cannot send packets outside its local subnet.
12-20-2004 06:46 AM
your idea of the default gateway is correct, however if you can not even ping the server from the local pix there is another issue, i would check the subnet mask of the server and make sure that im using the same subnet in all my devices (including the local pix inside network), for troubleshooting we have to make sure that the local pix is able to ping the server, once we do this make sure that the new IP is included in the acls for interesting traffic to the main site.
12-20-2004 11:21 AM
The local gateway, ip address, and subnet mask are correct on the jet direct card. The PIX config is correct, as there are several computers and two other printers that I can communicate with from this, the central office. {I did look at the PIX config to verify before replying.}
It really does seem that there is something on the PIX blocking that specific mac address. I have tried changing the IP address on the Jet Direct server, to no effect.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide