Solved

problem with accessing one web site from the private network

Posted on 2013-11-19
13
246 Views
Last Modified: 2013-11-21
I have a Cisco 5500 with 4 DMZ and the main network:
192.168.2.0 main
192.168.30.0 one of the DMZ's

I can tracert to the URL from the command prompt on the Cisco, no such access from the private or any of the DMZs.

I can get to the URL (www.myreviewalarm.com) on the DMZ but not the main network. On the main network I can get to any URL but this one (above).

Seems rather strange top me, any ideas?
Brian
0
Comment
Question by:brianinlongmont
  • 5
  • 4
  • 3
  • +1
13 Comments
 
LVL 6

Expert Comment

by:ButlerTechnology
ID: 39660630
Do you get the correct IP address when you do an NSLOOKUP on a machine on the main network?

Tom
0
 
LVL 34

Expert Comment

by:Dan Craciun
ID: 39660729
Looks like a DNS issue. Can you access the site by IP?

HTH,
Dan
0
 

Author Comment

by:brianinlongmont
ID: 39660759
NSLookup of myreviewalarm.com returns my primary DNS and the correct IP.
I can't browse to the URL with either the domain name or IP
Brian
0
 
LVL 6

Expert Comment

by:ButlerTechnology
ID: 39660768
Is this an internal site on the DMZ or external on the internet?  IF it is internal  -- Does the web server hosting the site have a route that goes to the Main network?

Tom
0
 

Author Comment

by:brianinlongmont
ID: 39660884
external on the Internet
Brian
0
 
LVL 6

Expert Comment

by:ButlerTechnology
ID: 39660950
Do you have a proxy on your network that clients use?

Tom
0
6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

 

Author Comment

by:brianinlongmont
ID: 39661141
no proxy
goes from 192.168.2.0 to the cisco at .254 and then out
Brian
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39661288
Are you sure you don't have any policies on the ASA that blocks traffic to/from that IP address for the one DMZ.
0
 

Author Comment

by:brianinlongmont
ID: 39664109
No I scanned the current config file form the Cisco and no address is blocked on 64.207..
any other ideas?
Brian
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39664147
I would do a packet capture on the ASA.
0
 

Author Comment

by:brianinlongmont
ID: 39664218
do you know how to set that up?
What about wireshark?
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39664233
I'll have to post how later tonight.  You can do the capture on the ASA and then transfer to another computer and look at it with wireshark.
0
 
LVL 57

Accepted Solution

by:
giltjr earned 500 total points
ID: 39664664
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Today, still in the boom of Apple, PC's and products, nearly 50% of the computer users use Windows as graphical operating systems. If you are among those users who love windows, but are grappling to keep the system's hard drive optimized, then you s…
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
Google currently has a new report that is in beta and coming soon to Webmaster Tool accounts. This Micro Tutorial will highlight new features for Google Webmaster Tools.
This Micro Tutorial will demonstrate how to add subdomains to your content reports. This can be very importing in having a site with multiple subdomains.

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now