?
Solved

Problems accessing web server through ASA firewall - from inside interface to DMZ

Posted on 2008-06-16
2
Medium Priority
?
496 Views
Last Modified: 2011-10-19
We have a web server located in a DMZ which we cannot seem to reach via web browser from our internal network.  On one interface of our ASA 5520, we have an internal network (172.16.1.X) with security level 100 and on another interface, the DMZ (172.16.2.X) with security level 50.  The inside network has only the implicit rule to allow all traffic to less secure networks; it is NAT exempt to the DMZ segment.  We can ping the web server, and access it via RDP, but cannot see the web page via HTTP.  The web server is accessible from the internet, however, via either the IP address or the domain name.  I have attached a screenshot of the error message that IE gives when attempting to access the website via its internal (DMZ) address.
connection-error.JPG
0
Comment
Question by:clewis_RPM
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 11

Expert Comment

by:billwharton
ID: 21798700
paste your pix config please
0
 

Accepted Solution

by:
clewis_RPM earned 0 total points
ID: 21814821
We have a Barracuda 310 inline with our firewall; this was unable to route to the DMZ network segment.  We gave it a static route (in the Barracuda interface) and now we're able to pass HTTP traffic.
0

Featured Post

Get MongoDB database support online, now!

At Percona’s web store you can order your MongoDB database support needs in minutes. No hassles, no fuss, just pick and click. Pay online with a credit card. Handle your MongoDB database support now!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is a collection of issues that people face from time to time and possible solutions to those issues. I hope you enjoy reading it.
There’s a movement in Information Technology (IT), and while it’s hard to define, it is gaining momentum. Some call it “stream-lined IT;” others call it “thin-model IT.”
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Suggested Courses

764 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question