|Subject:||Cannot ping public ip from internal|
|Posted by:||Eddie (h…@macci.com)|
|Date:||2 Dec 2003|
Hello Tech support,
Network are as follows :
system B -------|
| 10.10.10.3 126.96.36.199
system A -----catalyst switch 6500 -------PIX 5** ------Cisco router
10.10.10.1 10.10.10.2 188.8.131.52
System A ip : 10.10.10.1 (static mapped to 184.108.40.206)
System B ip : 10.10.10.3
Catalyst 6500 ip : 10.10.10.2
Pix 5** inside ip : 10.10.10.3
Pix 5** outside ip : 220.127.116.11
Cisco router 2600 ip : 18.104.22.168
We use static cmd in Pix to map the internal ip of system A
(10.10.10.1) to an public IP (22.214.171.124), so, we can connect this
system from outside the internet. Acturally, it is a web server and
user in remote site can get into the web serve by 126.96.36.199 through
internet no problem.
System B can only connect to system A by 10.10.10.1 but not 188.8.131.52
System B cannot even ping system A by 184.108.40.206
Telnet to Pix and cannot ping 220.127.116.11 from the pix. Pinging to
10.10.10.1 is fine.Pinging to 18.104.22.168 is fine.
Telnet to Route 2600, pinging to 22.214.171.124 is fine.
Only one Vlan is use and system A and system B are in that vlan.
System A can ping any public ip in internet an any private ip in the
Pix is running os ver 5.2(4).
Do a tracert from system B to 126.96.36.199, it only show the first hop
to 10.10.10.2 (the MFSC in catalyst 6500) and the rest is just *.
We need to be able to access system A from system B by the public IP.
Have any ideas ?