Jason, Doesn't the statement "nat 1 0 0" take care of all internal networks? Do I actually need to specify the subnet on the fast ethernet segment? ----- Original Message ----- From: "Jason Roysdon" To: Sent: Sunday, May 06, 2001 12:04 PM Subject: Re: PIX config question [7:3352] > Do a 'show xlate local x.x.x.x' and search for a private IP on the > fastethernet segment. > > It sounds like your PIX 'nat (inside) #' is missing the network of the > fastethernet segment. > > nat (inside) 1 192.168.1.0 255.255.255.0 0 0 > nat (inside) 1 192.168.2.0 255.255.255.0 0 0 > > > -- > Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ > List email: [EMAIL PROTECTED] > Homepage: http://jason.artoo.net/ > > > > ""Brandon"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Strange problem....... > > Here is the setup > > I have a PIX firewall directly connect to a token-ring ethernet segment. > All > > users on this segment can reach the internet.(I am using NAT......(nat 1 0 > 0) > > I also have a fast ethernet segment connected to the token ring segment by > a > > router.(NT server) I can ping the inside interface on the PIX from the > fast > > ethernet segment, however, no traffic passes through the PIX. (I have a > route > > inside statement to the fast ethernet segment) What is going on? Why can > I > > not get to the internet though the PIX. > > > > Added notes..... > > No outbound security is setup > > PIX in running 5.1(2) software > > It is an older PIX...(PIX classic) > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3376&t=3376 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]