Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

problem with accessing one web site from the private network

Posted on 2013-11-19
13
Medium Priority
?
263 Views
Last Modified: 2013-11-21
I have a Cisco 5500 with 4 DMZ and the main network:
192.168.2.0 main
192.168.30.0 one of the DMZ's

I can tracert to the URL from the command prompt on the Cisco, no such access from the private or any of the DMZs.

I can get to the URL (www.myreviewalarm.com) on the DMZ but not the main network. On the main network I can get to any URL but this one (above).

Seems rather strange top me, any ideas?
Brian
0
Comment
Question by:brianinlongmont
  • 5
  • 4
  • 3
  • +1
13 Comments
 
LVL 6

Expert Comment

by:ButlerTechnology
ID: 39660630
Do you get the correct IP address when you do an NSLOOKUP on a machine on the main network?

Tom
0
 
LVL 35

Expert Comment

by:Dan Craciun
ID: 39660729
Looks like a DNS issue. Can you access the site by IP?

HTH,
Dan
0
 

Author Comment

by:brianinlongmont
ID: 39660759
NSLookup of myreviewalarm.com returns my primary DNS and the correct IP.
I can't browse to the URL with either the domain name or IP
Brian
0
Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

 
LVL 6

Expert Comment

by:ButlerTechnology
ID: 39660768
Is this an internal site on the DMZ or external on the internet?  IF it is internal  -- Does the web server hosting the site have a route that goes to the Main network?

Tom
0
 

Author Comment

by:brianinlongmont
ID: 39660884
external on the Internet
Brian
0
 
LVL 6

Expert Comment

by:ButlerTechnology
ID: 39660950
Do you have a proxy on your network that clients use?

Tom
0
 

Author Comment

by:brianinlongmont
ID: 39661141
no proxy
goes from 192.168.2.0 to the cisco at .254 and then out
Brian
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39661288
Are you sure you don't have any policies on the ASA that blocks traffic to/from that IP address for the one DMZ.
0
 

Author Comment

by:brianinlongmont
ID: 39664109
No I scanned the current config file form the Cisco and no address is blocked on 64.207..
any other ideas?
Brian
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39664147
I would do a packet capture on the ASA.
0
 

Author Comment

by:brianinlongmont
ID: 39664218
do you know how to set that up?
What about wireshark?
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39664233
I'll have to post how later tonight.  You can do the capture on the ASA and then transfer to another computer and look at it with wireshark.
0
 
LVL 57

Accepted Solution

by:
giltjr earned 1500 total points
ID: 39664664
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article, the configuration steps in Zabbix to monitor devices via SNMP will be discussed with some real examples on Cisco Router/Switch, Catalyst Switch, NAS Synology device.
Each password manager has its own problems in dealing with certain websites and their login methods. In Part 1, I review the Top 5 Password Managers that I've found to be the best. In Part 2 we'll look at which ones co-exist together and why it'…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…

572 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question