Can someone shed some light one this for me.
I currently have a pix 515 firewall
internal network is 192.168.0.0/24 DMZ network is 192.168.4.0/24
IP address for outside interface is 10.10.10.10/29 (not real) IP address for DMZ interface is 10.10.10.11/29 (not really)
webserver sits in DMZ with internal IP address of 192.168.4.1
I can view the website perfectly when i am outside of the network however I cannot view the website when inside the network even if i use the ip address of the DMZ (10.10.10.11) I can goto 192.168.4.1 and see the site so everything is working on the webserver.
I know this has to be some kind of firewall issue
I have the following PAT/NAT setup
show running-config nat nat (DMZ) 200 192.168.4.0 255.255.255.0 nat (Inside) 0 access-list VPN nat (Inside) 200 0.0.0.0 0.0.0.0 mail(config)# show running-config global global (outside) 200 interface
I have heard something about PIX not allowing Internal traffic to go outside adn then back in an interface before. Is this correct. How do i setup routing to make this work.
show route
S 0.0.0.0 0.0.0.0 [1/0] via 216.199.223.41, outside C 192.168.0.0 255.255.255.0 is directly connected, Inside C 192.168.4.0 255.255.255.0 is directly connected, DMZ C 10.10.10.0 255.255.255.0 is directly connected, outside
Thanks very much for your help!!!
coin