Solved

Problems accessing web server through ASA firewall - from inside interface to DMZ

Posted on 2008-06-16
2
490 Views
Last Modified: 2011-10-19
We have a web server located in a DMZ which we cannot seem to reach via web browser from our internal network.  On one interface of our ASA 5520, we have an internal network (172.16.1.X) with security level 100 and on another interface, the DMZ (172.16.2.X) with security level 50.  The inside network has only the implicit rule to allow all traffic to less secure networks; it is NAT exempt to the DMZ segment.  We can ping the web server, and access it via RDP, but cannot see the web page via HTTP.  The web server is accessible from the internet, however, via either the IP address or the domain name.  I have attached a screenshot of the error message that IE gives when attempting to access the website via its internal (DMZ) address.
connection-error.JPG
0
Comment
Question by:clewis_RPM
2 Comments
 
LVL 11

Expert Comment

by:billwharton
ID: 21798700
paste your pix config please
0
 

Accepted Solution

by:
clewis_RPM earned 0 total points
ID: 21814821
We have a Barracuda 310 inline with our firewall; this was unable to route to the DMZ network segment.  We gave it a static route (in the Barracuda interface) and now we're able to pass HTTP traffic.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Setting up a VPN 60 140
Wired Network vs Wireless 12 58
How to access and configure Cisco Air LAP1142N 3 17
Cisco 3800 series and WISM2 1 16
I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
This past year has been one of great growth and performance for OnPage. We have added many features and integrations to the product, making 2016 an awesome year. We see these steps forward as the basis for future growth.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question