Hello,
Please bear with me, I'm helping with an office transition from one company to another. In the process the old company wiped the configuration of the PIX 506. I'm trying to get everything up and running again.
We have a Cisco 2950 switch with 2 vlans (10 and 20). Port 24 is the trunk port, set as 802.1Q trunking.
On the PIX, I can get vlan 1 to work fine. VLAN 2, I can ping the router, but can't get to the internet. VLAN2 from my understanding was setup to allow some videoconferencing equipment to work.
here's part of the configuration:
PIX Version 6.3(5) interface ethernet0 10full interface ethernet1 auto interface ethernet1 vlan20 logical nameif ethernet0 outside security0 nameif ethernet1 inside security100 nameif vlan20 DMZ security50
access-list 100 permit tcp any host xx.xx.xx.2 eq smtp access-list 100 permit tcp any interface outside eq www access-list 100 permit tcp any interface outside eq https access-list 100 permit tcp any interface outside eq 3389
ip address outside xx.xx.xx.2 255.255.255.248 ip address inside 172.30.40.254 255.255.255.0 ip address DMZ 172.30.70.254 255.255.255.0
global (outside) 10 interface
static (inside,outside) tcp interface www 172.30.40.2 www netmask
255.255.255.25 5 0 0 static (inside,outside) tcp interface 3389 172.30.40.2 3389 netmask 255.255.255. 255 0 0 access-group 100 in interface outside route outside 0.0.0.0 0.0.0.0 xx.xx.xx.1 1 route inside 172.30.40.0 255.255.255.255 172.30.40.254 1I feel as though it's an access list/group issue, but I can't for the life of me get it figured out.