accessing websites with cisco firewall

Just a general question looking for suggestions.   We have had some minor issues with accessing websites externally.  We use a cisco firewall that has been in place for about 5 years.  What will happen is non-NAT machines will not be able to access a certain website through the firewall it comes back unavailable.  Machines that are NAT addressed will access this site fine and the same non-NAT machines have no issues on other networks.   This only happens for maybe one out of 10000 websites we try to access.  I have no clue what it could be or even if it is on our side.  I am looking for suggestions as to where to start.
LVL 1
Tim LewisNetwork ManagerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Robert Sutton JrSenior Network ManagerCommented:
Have you viewed the logs and see if your answer jumps out at you after an unsuccessful attempt?
0
Ernie BeekExpertCommented:
Agree, first check the logs. If you know any particular site that has this problem you can force an error and meanwhile check the logs.
0
Tim LewisNetwork ManagerAuthor Commented:
I see nothing in the logs that shows anything for my IP address or the IP of the site I am trying to access.
0
Managing Security & Risk at the Speed of Business

Gartner Research VP, Neil McDonald & AlgoSec CTO, Prof. Avishai Wool, discuss the business-driven approach to automated security policy management, its benefits and how to align security policy management with business processes to address today's security challenges.

Ernie BeekExpertCommented:
Ok, you talked about non-nat machines. Does that mean they use a public IP address?
0
Tim LewisNetwork ManagerAuthor Commented:
They are the ones without a public IP.  
0
Ernie BeekExpertCommented:
Ehr, let me first try to get the picture. You have natted and non-natted machines. Imho that would mean that some have private IPs and are natted through the firewall and others have public IPs and aren't natted.
Am I even close in this assumption?
0
Tim LewisNetwork ManagerAuthor Commented:
correct.  the non-NAT use the firewall IP for outside access when the NAT each have their own public IP
0
fgasimzadeCommented:
Well, NAT means Network Address Translation, in other words NATted machines' IP addresses are changed on the firewall. Non-NATed machines use public IPs
0
Ernie BeekExpertCommented:
So, those public ip's are 'yours' ?
Furthermore, what is the reason you have set things up this way (natted an non-natted)? And I agree with fgasimzade on the terminology for that matter :)
0
Robert Sutton JrSenior Network ManagerCommented:
Have you checked your DNS settings? J/C
0
Tim LewisNetwork ManagerAuthor Commented:
It seems to be on the other side.  Thanks
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Tim LewisNetwork ManagerAuthor Commented:
It is the only answer that is close.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Cisco

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.