What's probably happening is that the outgoing packet is going through the
PIX (because you are using the external address), and then to the actual
web server. Since the web server is probably on the same network
(logically speaking) as your browsing machine, the response doesn't go
through the PIX; it sends it directly back to the client machine. Because
the responses don't go through the PIX, the originating address on those
packets don't get translated to the web server's public (NAT'd) address.
Your browser machine expects a response from the web server's public
address, not its internal address.
-mike
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
