Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

problem with accessing one web site from the private network

Posted on 2013-11-19
13
Medium Priority
?
261 Views
Last Modified: 2013-11-21
I have a Cisco 5500 with 4 DMZ and the main network:
192.168.2.0 main
192.168.30.0 one of the DMZ's

I can tracert to the URL from the command prompt on the Cisco, no such access from the private or any of the DMZs.

I can get to the URL (www.myreviewalarm.com) on the DMZ but not the main network. On the main network I can get to any URL but this one (above).

Seems rather strange top me, any ideas?
Brian
0
Comment
Question by:brianinlongmont
  • 5
  • 4
  • 3
  • +1
13 Comments
 
LVL 6

Expert Comment

by:ButlerTechnology
ID: 39660630
Do you get the correct IP address when you do an NSLOOKUP on a machine on the main network?

Tom
0
 
LVL 35

Expert Comment

by:Dan Craciun
ID: 39660729
Looks like a DNS issue. Can you access the site by IP?

HTH,
Dan
0
 

Author Comment

by:brianinlongmont
ID: 39660759
NSLookup of myreviewalarm.com returns my primary DNS and the correct IP.
I can't browse to the URL with either the domain name or IP
Brian
0
Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as the high-speed power of the cloud.

 
LVL 6

Expert Comment

by:ButlerTechnology
ID: 39660768
Is this an internal site on the DMZ or external on the internet?  IF it is internal  -- Does the web server hosting the site have a route that goes to the Main network?

Tom
0
 

Author Comment

by:brianinlongmont
ID: 39660884
external on the Internet
Brian
0
 
LVL 6

Expert Comment

by:ButlerTechnology
ID: 39660950
Do you have a proxy on your network that clients use?

Tom
0
 

Author Comment

by:brianinlongmont
ID: 39661141
no proxy
goes from 192.168.2.0 to the cisco at .254 and then out
Brian
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39661288
Are you sure you don't have any policies on the ASA that blocks traffic to/from that IP address for the one DMZ.
0
 

Author Comment

by:brianinlongmont
ID: 39664109
No I scanned the current config file form the Cisco and no address is blocked on 64.207..
any other ideas?
Brian
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39664147
I would do a packet capture on the ASA.
0
 

Author Comment

by:brianinlongmont
ID: 39664218
do you know how to set that up?
What about wireshark?
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39664233
I'll have to post how later tonight.  You can do the capture on the ASA and then transfer to another computer and look at it with wireshark.
0
 
LVL 57

Accepted Solution

by:
giltjr earned 1500 total points
ID: 39664664
0

Featured Post

New Tabletop Appliances Blow Competitors Away!

WatchGuard’s new T15, T35 and T55 tabletop UTMs provide the highest-performing security inspection in their class, allowing users at small offices, home offices and distributed enterprises to experience blazing-fast Internet speeds without sacrificing enterprise-grade security.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Originally, this post was published on Monitis Blog, you can check it here . It goes without saying that technology has transformed society and the very nature of how we live, work, and communicate in ways that would’ve been incomprehensible 5 ye…
If you’re involved with your company’s wide area network (WAN), you’ve probably heard about SD-WANs. They’re the “boy wonder” of networking, ostensibly allowing companies to replace expensive MPLS lines with low-cost Internet access. But, are they …
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

971 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question