First and most important, I am a novice with configuring the Cisco PIX 501.
I switched my ISP on Friday and had to reconfigure the PIX for the new static IP Addresses etc. I pretty much just swapped the IP addresses in the PIX as I am not an expert with the device and did not want to completely blow it away.
I have the pix NAT setup to translate the proper static ip addresses to the correct internal servers. We have an Exchange Server and a Citrix Server that needs to be hit from the outside. The traffic for Citrix and the Exchanger Server is working fine. (The only quirk with Exchange is, it is unable to relay or establish a connection with about half of the recipient mail servers, but that could be a DNS propagation thing with the change of the Static IP addresses. )
I can surf the internet directly on the Exchange Server and the Citrix Server.
However I can NOT surf on any other workstation in the building.
I tried flushing the revolver cache, changed DNS servers etc.
The only thing I can think of is there are NAT translation rules and access rules for the 2 servers that are able to surf the net but nothing specfically for the workstations that can not.
I do have a dynamic rule setup as "inside:any/0.0.0.0 | Outside "ip address for outside interface" ..
This is exactly how it was setup with the old ISP, the only thing that changed were the Static IP addresses.
I thought it was a DNS issue but like I said, 2 of the servers are able to surf fine. It has to be something with the PIX passing traffic to the workstations. Any help would be greatly appreciated. THANK YOU!
Start Free Trial
