I'm having problems with configuring a PIX to pick up a dhcp ip address
on its external interface, and allow pings from the PIX to

the external world.

I have just reset the PIX and set back to factory defaults:
write erase
Reload
configure factory-default
write mem

(1) Its not picking up dhcp IP from my adsl router:
pixfirewall# show ip address outside dhcp
Temp IP addr: 0.0.0.0 for peer on Interface: outside
Temp sub net mask: 0.0.0.0
DHCP Lease server: 0.0.0.0, state: 1 Selecting
DHCP transaction id: 0x1B8898
Lease: 0 secs, Renewal: 0 secs, Rebind: 0 secs
Next timer fires after: 1 seconds
Retry count: 1 Client-ID: cisco-0016.c7f9.c402-outside

Is there a way to reattempt to receive a dhcp address?

(2) Also. If I set a static external IP address, the PIX501 cannot ping
my ADSL router.
pixfirewall# ping 192.168.1.254
192.168.1.254 NO response received -- 1000ms
192.168.1.254 NO response received -- 1000ms
192.168.1.254 NO response received -- 1000ms

Thanks
Nick


PIX Version 6.3(5)
interface ethernet0 auto
interface ethernet1 100full
nameif ethernet0 outside security0
nameif ethernet1 inside security100
hostname pixfirewall
names
pager lines 24
mtu outside 1500
mtu inside 1500
ip address outside dhcp setroute
ip address inside 192.168.1.1 255.255.255.0
ip audit info action alarm
ip audit attack action alarm
pdm logging informational 100
pdm history enable
arp timeout 14400
global (outside) 1 interface
nat (inside) 1 0.0.0.0 0.0.0.0 0 0
timeout xlate 0:05:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h225
1:00:00
timeout h323 0:05:00 mgcp 0:05:00 sip 0:30:00 sip_media 0:02:00
timeout sip-disconnect 0:02:00 sip-invite 0:03:00
timeout uauth 0:05:00 absolute
aaa-server TACACS+ protocol tacacs+
aaa-server TACACS+ max-failed-attempts 3
aaa-server TACACS+ deadtime 10
aaa-server RADIUS protocol radius
aaa-server RADIUS max-failed-attempts 3
aaa-server RADIUS deadtime 10
aaa-server LOCAL protocol local
http server enable
http 192.168.1.0 255.255.255.0 inside
no snmp-server location
no snmp-server contact
snmp-server community public
no snmp-server enable traps
floodguard enable
telnet timeout 5
ssh timeout 5
console timeout 0
dhcpd address 192.168.1.2-192.168.1.33 inside
dhcpd lease 3600
dhcpd ping_timeout 750
dhcpd auto_config outside
dhcpd enable inside
terminal width 80

ip address outside dhcp

Ta

AJ
<nicough@gmail.com> wrote in message
news:1163680670.680640.241030@h48g2000cwc.googlegr oups.com...

<nicough@gmail.com> wrote in message
news:1163680670.680640.241030@h48g2000cwc.googlegr oups.com...
Can you post the result of a

sh interface


You may have cabling problems. Do you have a cross-over cable
between your PIX and router ?

What is your static external IP?
Is 192.168.1.254 is ADSl Router IP?


CK

Use the PIX capture command to see if the PIX is transmitting DHCP
requests and to see if it is receiving DHCP response.

Depending on twhat you see or do not see in the capture traces, you
should have an idea where to look next

I replaced the external cable, and suddenly I received a dhcp address,
and could ping the router and the outside world.

Thank you all for your ideas.
Nick

COOL



nicough@gmail.com wrote: