?
Solved

problem with accessing one web site from the private network

Posted on 2013-11-19
13
Medium Priority
?
258 Views
Last Modified: 2013-11-21
I have a Cisco 5500 with 4 DMZ and the main network:
192.168.2.0 main
192.168.30.0 one of the DMZ's

I can tracert to the URL from the command prompt on the Cisco, no such access from the private or any of the DMZs.

I can get to the URL (www.myreviewalarm.com) on the DMZ but not the main network. On the main network I can get to any URL but this one (above).

Seems rather strange top me, any ideas?
Brian
0
Comment
Question by:brianinlongmont
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
  • 3
  • +1
13 Comments
 
LVL 6

Expert Comment

by:ButlerTechnology
ID: 39660630
Do you get the correct IP address when you do an NSLOOKUP on a machine on the main network?

Tom
0
 
LVL 35

Expert Comment

by:Dan Craciun
ID: 39660729
Looks like a DNS issue. Can you access the site by IP?

HTH,
Dan
0
 

Author Comment

by:brianinlongmont
ID: 39660759
NSLookup of myreviewalarm.com returns my primary DNS and the correct IP.
I can't browse to the URL with either the domain name or IP
Brian
0
Moving data to the cloud? Find out if you’re ready

Before moving to the cloud, it is important to carefully define your db needs, plan for the migration & understand prod. environment. This wp explains how to define what you need from a cloud provider, plan for the migration & what putting a cloud solution into practice entails.

 
LVL 6

Expert Comment

by:ButlerTechnology
ID: 39660768
Is this an internal site on the DMZ or external on the internet?  IF it is internal  -- Does the web server hosting the site have a route that goes to the Main network?

Tom
0
 

Author Comment

by:brianinlongmont
ID: 39660884
external on the Internet
Brian
0
 
LVL 6

Expert Comment

by:ButlerTechnology
ID: 39660950
Do you have a proxy on your network that clients use?

Tom
0
 

Author Comment

by:brianinlongmont
ID: 39661141
no proxy
goes from 192.168.2.0 to the cisco at .254 and then out
Brian
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39661288
Are you sure you don't have any policies on the ASA that blocks traffic to/from that IP address for the one DMZ.
0
 

Author Comment

by:brianinlongmont
ID: 39664109
No I scanned the current config file form the Cisco and no address is blocked on 64.207..
any other ideas?
Brian
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39664147
I would do a packet capture on the ASA.
0
 

Author Comment

by:brianinlongmont
ID: 39664218
do you know how to set that up?
What about wireshark?
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39664233
I'll have to post how later tonight.  You can do the capture on the ASA and then transfer to another computer and look at it with wireshark.
0
 
LVL 57

Accepted Solution

by:
giltjr earned 1500 total points
ID: 39664664
0

Featured Post

Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
This article explains the fundamentals of industrial networking which ultimately is the backbone network which is providing communications for process devices like robots and other not so interesting stuff.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …

719 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question