请高手看看pix配置，web服务器互联网无法访问。

PIX Version 6.3(5)
4 S2 ]) _: ], [" i5 S$ Winterface ethernet0 auto
interface ethernet1 auto
nameif ethernet0 outside security0
; G' m* ^/ q8 V- Hnameif ethernet1 inside security100
enable password bC9eqE.KH6cr1L6d encrypted
- N2 \; D3 [7 X! }passwd bC9eqE.KH6cr1L6d encrypted
$ I, J  E# `5 Fhostname xzzx
fixup protocol dns maximum-length 512
fixup protocol ftp 21
) v6 p8 E  N7 U+ Qfixup protocol h323 h225 1720
# [# j0 R* v  I" p/ u; Vfixup protocol h323 ras 1718-1719
fixup protocol http 80
fixup protocol rsh 514
; X' v6 C+ k  d, \& Y( o! ifixup protocol rtsp 554
fixup protocol sip 5060
fixup protocol sip udp 5060
fixup protocol skinny 2000
, v$ n, o7 y$ n7 R) X8 X& V! Q) mfixup protocol smtp 25
fixup protocol sqlnet 1521
fixup protocol tftp 69
names

# ^* c% q/ d* c7 ^! zaccess-list 130 deny udp any any eq 1434
access-list 130 deny ip host 192.168.91.9 any
7 ^" H( p: R( F! a' O7 kaccess-list 130 deny ip host 192.168.91.10 any
5 }( f4 ?' P# K- L, x) saccess-list 130 deny ip host 192.168.91.11 any
; {8 V4 t( X, F- ^5 Z# `* g+ Caccess-list 130 deny ip host 192.168.91.12 any
- v8 m' X/ Q% r. l# Waccess-list 130 deny ip host 192.168.91.13 any
. X, s& E5 n& }0 |* H# taccess-list 130 deny ip host 192.168.91.14 any
2 r, S! Q1 t: j, t3 L  F& U% Haccess-list 130 deny ip host 192.168.91.15 any
access-list 130 deny ip host 192.168.93.21 any
access-list 130 deny ip host 192.168.93.22 any
access-list 130 deny ip host 192.168.93.23 any
+ Y" Z6 @; x- k1 S% S7 oaccess-list 130 deny ip host 192.168.93.24 any
* V4 h  }' T& zaccess-list 130 deny ip host 192.168.93.25 any
9 o& v- ]6 [8 j& v7 o5 j" X7 caccess-list 130 deny ip host 192.168.93.26 any
access-list 130 deny ip host 192.168.93.27 any
access-list 130 deny ip host 192.168.93.28 any
access-list 130 deny ip host 192.168.93.29 any
access-list 130 deny ip host 192.168.93.30 any
access-list 130 deny ip host 192.168.93.31 any
access-list 130 permit ip 192.168.91.0 255.255.255.240 any
access-list 130 permit ip 192.168.92.0 255.255.255.240 any
access-list 130 permit ip 192.168.95.0 255.255.255.224 any
2 _% ^) f* K5 p( X6 h+ F/ taccess-list 130 permit ip 192.168.99.0 255.255.255.224 any
+ H$ }# [8 {7 G* taccess-list 130 permit ip 192.168.100.0 255.255.255.224 any
4 h+ x5 p% o  H7 ~2 Z- E0 p5 M' a
1 l& T, |1 e; z/ ]access-list 130 permit ip 192.168.93.0 255.255.255.224 any
pager lines 24
mtu outside 1500
mtu inside 1500
ip address outside ***.**.28.74 255.255.255.248
ip address inside 192.168.100.1 255.255.255.0
ip audit info action reset
$ e- l" [7 Q( e9 h% L# l2 v1 Z* {2 rip audit attack action reset
no failover
6 k+ R3 [, t- F7 {# lfailover timeout 0:00:00
, m- b1 V. Y  D8 X7 H1 `2 Ofailover poll 15
no failover ip address outside
no failover ip address inside
pdm history enable
arp timeout 14400
global (outside) 1 interface
nat (inside) 1 0.0.0.0 0.0.0.0 0 0
+ Z& d3 S- ~8 v8 o9 }: Z1 l: |+ jstatic (inside,outside) tcp ***.**.28.76 www 192.168.99.9 www netmask 255.255.255.255 0 0

) V# V4 u8 G3 J. ], oaccess-group 130 in interface inside
  z) |* ^1 H6 Zconduit permit icmp any any
4 i0 }$ o5 P4 mconduit permit tcp host ***.**.28.76 eq www any

+ J/ p6 D& `6 n0 oroute outside 0.0.0.0 0.0.0.0 ***.**.28.73 1
2 s' C( G, ?# p' [route inside 0.0.0.0 0.0.0.0 192.168.100.2 2

帮帮顶顶！！

沙发！沙发!

我是来刷分的，嘿嘿

有道理。。。感谢攻城狮论坛

帮帮顶顶！！