Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Problems accessing web server through ASA firewall - from inside interface to DMZ

Posted on 2008-06-16
2
491 Views
Last Modified: 2011-10-19
We have a web server located in a DMZ which we cannot seem to reach via web browser from our internal network.  On one interface of our ASA 5520, we have an internal network (172.16.1.X) with security level 100 and on another interface, the DMZ (172.16.2.X) with security level 50.  The inside network has only the implicit rule to allow all traffic to less secure networks; it is NAT exempt to the DMZ segment.  We can ping the web server, and access it via RDP, but cannot see the web page via HTTP.  The web server is accessible from the internet, however, via either the IP address or the domain name.  I have attached a screenshot of the error message that IE gives when attempting to access the website via its internal (DMZ) address.
connection-error.JPG
0
Comment
Question by:clewis_RPM
2 Comments
 
LVL 11

Expert Comment

by:billwharton
ID: 21798700
paste your pix config please
0
 

Accepted Solution

by:
clewis_RPM earned 0 total points
ID: 21814821
We have a Barracuda 310 inline with our firewall; this was unable to route to the DMZ network segment.  We gave it a static route (in the Barracuda interface) and now we're able to pass HTTP traffic.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Boosting Power of a Cisco Access Point 8 58
OSPF - Convergence & Downtime 9 25
ASA 5506X create a simple DMZ 4 25
nested esxi, NIC issues 1 28
Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question