Hi,
VPN currently goes to an internal pool of IPs behind the 'inside' interface. No gateway is defined by the PIX, so I assumed that:
route add <DMZ class C> mask <class C Netmask> <gateway>
Would work for VPN access via the inside interface to the DMZ machines.
It doesn't seem to work. Any suggestions? If I plug myself into the internal port directly on the pix, it works fine - and I thought this would be the same thing.
The other question is: what's the best way of providing DNS for the servers in the DMZ if I want them to access each other via DNS calls. Is there an easy way for the PIX to translate DNS calls via the external interface? (Because it doesn't like calls to the external interface via the DMZ interface - if you see what I mean)
Thanks in advance
VPN currently goes to an internal pool of IPs behind the 'inside' interface. No gateway is defined by the PIX, so I assumed that:
route add <DMZ class C> mask <class C Netmask> <gateway>
Would work for VPN access via the inside interface to the DMZ machines.
It doesn't seem to work. Any suggestions? If I plug myself into the internal port directly on the pix, it works fine - and I thought this would be the same thing.
The other question is: what's the best way of providing DNS for the servers in the DMZ if I want them to access each other via DNS calls. Is there an easy way for the PIX to translate DNS calls via the external interface? (Because it doesn't like calls to the external interface via the DMZ interface - if you see what I mean)
Thanks in advance
