Re: Cisco PIX 506

In article <1145032221.822554.265210@i40g2000cwc.googlegroups.com>,
 <smbusa2002@yahoo.com> wrote:
>I have a PIX 506. All my public IP starts with 66.153.... and then they
>are mapped to a private IP in the PIx(Access list and Static ..)
> We got some more new IP from my ISP that starts with 64.80....
>Now I mapped(access list/static in PIX) the new IP (64.80..)
>I can ping the firewall from inside
>but then I cannot get it to work. my pC will not go on to the internet
>Is there any other command i have to put in for 64.80..Ip address

PIX questions are better addressed to comp.dcom.sys.cisco -- more PIX
people hang around there.

You haven't shown enough of your configuration to be sure, but it
sounds to me as if the problem is that your WAN router is not
routing 64.80.whatever to the PIX outside interface IP. The
PIX -will- proxy arp for any IP declared static to its outside
network, but there are a number of circumstances under which proxy arp
is disabled on the PIX, and your WAN router might simply not be
expecting it, so it is always safer to have the WAN router route the
additional ranges to the PIX interface.
Received on Mon May 1 01:07:07 2006