Cisco Systems General internet router and PIX firewall config questions
Bookmark this page:  YahooMyWeb Yahoo!  Google Google  Windows Live Favorites Windows Live  del.icio.us del.icio.us  digg digg  Add to Netscape Netscape
Subject Author Date
General internet router and PIX firewall config questions Chris 12-04-07
Posted by Chris on December 4, 2007, 4:20 pm
Please log in for more thread options
We have a Cisco 2621 XM internet router and a PIX 515E firewall. In
the past we had an issue with not being able to access a certain web
site correctly - turned out it was caused by a statement in the router
that should not have been there - 'ip inspect http'. I am told this
blocks java in some way. We removed that, along with an access list
and then it worked fine. Fast forward a couple years and all of a
sudden our internet started to crawl - that is the few sites that
would come up at all would crawl. No changes to the router and the
ISP claims no other issues or changes on their end. After many hours
of troubleshooting we removed two statements from the router - 'ip
inspect ETHERNET in' and from the serial port 'access-group
SERIAL_IN'. As soon as we removed these lines - bingo - the internet
started working and has now worked for 6 hours. My questions are:
1. Any idea why removing these statements after years of seeminly
normal operation would fix the problem that only 2 days ago manifested
itself?
2. If the PIX firewall is correctly configured - is there any need for
ip inspect statements in the internet router at all? There are still
a bunch of other ip inspectseemingly statements in the config. From
what I read it sounds like they are used for firewall purposes only.

Thanks for any info! I know little more about Cisco routers than your
average NFL running back. Yeah - that means very little.

Similar ThreadsPosted
General internet router and PIX firewall config questions December 4, 2007, 4:20 pm
general vlan questions July 28, 2006, 11:33 am
Help with internet router config to allow pptp July 7, 2005, 11:43 am
Q on router/firewall config with pptp for clients enabled January 27, 2007, 12:50 am
quick config for 2610 t-1 router to netgear firewall? February 6, 2009, 4:28 pm
Just Need Most Basic Router Config For Internet Connectivity - Please Help!! October 13, 2005, 11:05 am
Cisco Router Config with a T1 Internet line September 21, 2006, 3:46 pm
General Router Question July 27, 2005, 7:34 pm
Firewall questions May 19, 2009, 12:53 pm
General question about TCP and buffering in switch/router/modem February 1, 2009, 3:49 pm
Dual internet access routing questions April 13, 2006, 1:43 pm
recommendations for a firewall for use as an Internet Gateway November 6, 2006, 2:10 pm
Firewall Config on 1700 IOS September 9, 2005, 10:39 am
Cisco 1841 T1 & Firewall Config HELP!!!!!!!!! November 9, 2005, 3:45 pm
Cisco T1 Internet Config May 2, 2007, 9:51 am
Residential Cabling Guide

Home Cabling Guide

Finally, an instantly downloadable book that saves you thousands in home improvement dollars! Enjoy living in 21st century technology-advanced home while increasing its selling value and competitive advantage on the real estate market. Whether your cabling is for home office or high-tech leisure, you can wire your home yourself or learn "wirish" to speak with your cabling contractors in their language!

Learn More