problem with accessing one web site from the private network

I have a Cisco 5500 with 4 DMZ and the main network:
192.168.2.0 main
192.168.30.0 one of the DMZ's

I can tracert to the URL from the command prompt on the Cisco, no such access from the private or any of the DMZs.

I can get to the URL (www.myreviewalarm.com) on the DMZ but not the main network. On the main network I can get to any URL but this one (above).

Seems rather strange top me, any ideas?
Brian
brianinlongmontAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
giltjrConnect With a Mentor Commented:
0
 
ButlerTechnologyCommented:
Do you get the correct IP address when you do an NSLOOKUP on a machine on the main network?

Tom
0
 
Dan CraciunIT ConsultantCommented:
Looks like a DNS issue. Can you access the site by IP?

HTH,
Dan
0
Improve Your Query Performance Tuning

In this FREE six-day email course, you'll learn from Janis Griffin, Database Performance Evangelist. She'll teach 12 steps that you can use to optimize your queries as much as possible and see measurable results in your work. Get started today!

 
brianinlongmontAuthor Commented:
NSLookup of myreviewalarm.com returns my primary DNS and the correct IP.
I can't browse to the URL with either the domain name or IP
Brian
0
 
ButlerTechnologyCommented:
Is this an internal site on the DMZ or external on the internet?  IF it is internal  -- Does the web server hosting the site have a route that goes to the Main network?

Tom
0
 
brianinlongmontAuthor Commented:
external on the Internet
Brian
0
 
ButlerTechnologyCommented:
Do you have a proxy on your network that clients use?

Tom
0
 
brianinlongmontAuthor Commented:
no proxy
goes from 192.168.2.0 to the cisco at .254 and then out
Brian
0
 
giltjrCommented:
Are you sure you don't have any policies on the ASA that blocks traffic to/from that IP address for the one DMZ.
0
 
brianinlongmontAuthor Commented:
No I scanned the current config file form the Cisco and no address is blocked on 64.207..
any other ideas?
Brian
0
 
giltjrCommented:
I would do a packet capture on the ASA.
0
 
brianinlongmontAuthor Commented:
do you know how to set that up?
What about wireshark?
0
 
giltjrCommented:
I'll have to post how later tonight.  You can do the capture on the ASA and then transfer to another computer and look at it with wireshark.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.