troubleshooting Question

PIX - port 8080

Avatar of mgpremkumar
mgpremkumarFlag for India asked on
Software FirewallsCisco
4 Comments1 Solution10935 ViewsLast Modified:
Hi :),

I tried my level best to solve this problem, but could not. So I am here to ask help from the experts.


                                   -----Webserver(IIS+Apache Tomcat)
Internet----PIX515E---|
                                   -----Inside

This is my network. Everything is working fine. The webserver is serving two website and has two IPs. I am able to access the websites both from outside and inside.

Now there is a website which runs using port 8080 using Tomcat is support JSP. This is using port 8080. I want to access this webpage both from outside and inside. Internally I have no problems doing so. Externally I am unable to connect to this website.

Since I am using the same server I should be able to access this website by adding the port 8080 at the end of the URL. Internally I can access the website by using the URLs:
www.website1.my:8080
www.website2.my:8080

When I am trying to access it from outside I cannot get through.

I have the port 8080 enabled both on the outside and the dmz.
The commands that I am using to permit access to this port are:
Interface Outside : access-list acl_out permit tcp any host 161.x.x.x eq 8080
Interface Inside: access-list acl_dmz permit tcp any any eq 8080

I have read an article which says that Tomcat has to be integrated with the IIS. Since I can already access the website from inside I assume that this configuration is not needed. I have also checked the firewall and it shows that there are hits for port 8080. I am not sure why this is not working.

Please let me know what has to be done. In the meantime I will try to integrated Tomcat with IIS and see whether anything changes.

Regards,
Prem Kumar.
Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 4 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 4 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros