PIX question/help?

From: Alfred Chin (chinalfr@attbi.com)
Date: Mon Dec 23 2002 - 13:14:57 GMT-3

• Next message: Dave Stoddard: "RE: Jump start , Help ."
• Previous message: martin vlahos: "Jump start , Help ."
• Next in thread: Steve Munro: "RE: PIX question/help?"
• Maybe reply: Steve Munro: "RE: PIX question/help?"
• Maybe reply: MADMAN: "Re: PIX question/help?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

GlacierI run into some weird problem while setting up a new PIX. I hope
someone might have some idea what is wrong with my setting or just the
hardware.

Basically, I try to use NAT from my inside interface to outside interface.
Here is a sample config.

ip address outside 216.3.99.2 255.255.255.128
ip address inside 192.168.0.1 255.255.255.0
global (outside) 1 216.3.99.3 netmask 255.255.255.128
nat (inside) 1 0.0.0.0 0.0.0.0 0 0
route outside 0.0.0.0 0.0.0.0 216.3.99.1 1

Here is the problem, the PIX can't perform any NAT/PAT function. Traffic is
not being NAT/PAT from inside to outside. Turn on debugging on the PIX.
Here is a log from the debugging.

111008: User 'enable_15' executed the 'clear logging' command.
111009: User 'enable_15' executed cmd: show logging
609001: Built local-host inside:192.168.0.226
201008: The PIX is disallowing new connections.
305006: portmap translation creation failed for tcp src
inside:192.168.0.226/2265 dst outside:64.58.76.178/80
201008: The PIX is disallowing new connections.
305006: portmap translation creation failed for tcp src
inside:192.168.0.226/2265 dst outside:64.58.76.178/80
201008: The PIX is disallowing new connections.
305006: portmap translation creation failed for tcp src
inside:192.168.0.226/2265 dst outside:64.58.76.178/80
201008: The PIX is disallowing new connections.
305006: portmap translation creation failed for tcp src
inside:192.168.0.226/2266 dst outside:64.58.76.222/80
201008: The PIX is disallowing new connections.
305006: portmap translation creation failed for tcp src
inside:192.168.0.226/2266 dst outside:64.58.76.222/80
201008: The PIX is disallowing new connections.
305006: portmap translation creation failed for tcp src
inside:192.168.0.226/2266 dst outside:64.58.76.222/80
201008: The PIX is disallowing new connections.
305006: portmap translation creation failed for tcp src
inside:192.168.0.226/2267 dst outside:64.58.76.224/80
201008: The PIX is disallowing new connections.
305006: portmap translation creation failed for tcp src
inside:192.168.0.226/2267 dst outside:64.58.76.224/80
201008: The PIX is disallowing new connections.

This is a PIX 515UR running PIX ver 6.2.2.

Thanks in advance.

Merry Christmas & Happy New Year to all

Alfred Chin

[GroupStudy.com removed an attachment of type image/jpeg which had a name of Glacier Bkgrd.jpg]
.

• Next message: Dave Stoddard: "RE: Jump start , Help ."
• Previous message: martin vlahos: "Jump start , Help ."
• Next in thread: Steve Munro: "RE: PIX question/help?"
• Maybe reply: Steve Munro: "RE: PIX question/help?"
• Maybe reply: MADMAN: "Re: PIX question/help?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Jan 17 2003 - 17:21:51 GMT-3