We are a group of young Chinese setting up a simple LAN with a few desktops and printers with one ADSL connexion.
ISP ADSL modem PIX501 LAN
Out of the box we setup the PIX501 using the startup wizard (via the Internet Explorer), we made only two changes:
- the IP address of the PIX501 (now 192.168.0.1) 2. the IP addresses for DHCP (now 192.168.0.101-109)
Of course we entered our username and password for accessing the ISP, as well as a primary and secondary DNS addresses.
The PIX501 gets a DHCP address from the ISP, no problem there.
SKYPE is immediately active and available without setting anything in the PIX501. :-) yeah, we can talk!
This is the stuff driving us nuts!:
Web (http) and email (pop3) requests from the inside (LAN) end up with nothing back, like when you have connexion to the ISP. WHY!!!
Finally below is the PIX501 config.
Thanks for any help you can give us!
Cheers from the Container Port Road (cpr) kids (no we don't live in containers, just nearby the road going to the container port) ... :-)
: Saved : PIX Version 6.3(5) interface ethernet0 auto interface ethernet1 100full nameif ethernet0 outside security0 nameif ethernet1 inside security100 enable password 8Ry2YjIyt7RRXU44 encrypted passwd 2KFQnbNIdI.2K77U encrypted hostname cpr domain-name ciscopix.com fixup protocol dns maximum-length 512 fixup protocol ftp 21 fixup protocol h323 h225 1720 fixup protocol h323 ras 1718-1719 fixup protocol http 80 fixup protocol rsh 514 fixup protocol rtsp 554 fixup protocol sip 5060 fixup protocol sip udp 5060 fixup protocol skinny 2000 fixup protocol smtp 25 fixup protocol sqlnet 1521 fixup protocol tftp 69 names pager lines 24 mtu outside 1500 mtu inside 1500 ip address outside pppoe setroute ip address inside 192.168.0.1 255.255.255.0 ip audit info action alarm ip audit attack action alarm pdm logging informational 100 pdm history enable arp timeout 14400 global (outside) 1 interface nat (inside) 1 0.0.0.0 0.0.0.0 0 0 timeout xlate 0:05:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h225
1:00:00 timeout h323 0:05:00 mgcp 0:05:00 sip 0:30:00 sip_media 0:02:00 timeout sip-disconnect 0:02:00 sip-invite 0:03:00 timeout uauth 0:05:00 absolute aaa-server TACACS+ protocol tacacs+ aaa-server TACACS+ max-failed-attempts 3 aaa-server TACACS+ deadtime 10 aaa-server RADIUS protocol radius aaa-server RADIUS max-failed-attempts 3 aaa-server RADIUS deadtime 10 aaa-server LOCAL protocol local http server enable http 192.168.0.0 255.255.255.0 inside no snmp-server location no snmp-server contact snmp-server community public no snmp-server enable traps floodguard enable telnet timeout 5 ssh timeout 5 console timeout 0 vpdn group pppoe_group request dialout pppoe vpdn group pppoe_group localname cpr vpdn group pppoe_group ppp authentication pap vpdn username cpr password ********* store-local dhcpd address 192.168.0.101-192.168.0.109 inside dhcpd lease 3600 dhcpd ping_timeout 750 dhcpd auto_config outside dhcpd enable inside terminal width 80 Cryptochecksum:4c36e0fd8ec21602791ab9203f01b633 : end [OK]