Solved

problem with accessing one web site from the private network

Posted on 2013-11-19
13
247 Views
Last Modified: 2013-11-21
I have a Cisco 5500 with 4 DMZ and the main network:
192.168.2.0 main
192.168.30.0 one of the DMZ's

I can tracert to the URL from the command prompt on the Cisco, no such access from the private or any of the DMZs.

I can get to the URL (www.myreviewalarm.com) on the DMZ but not the main network. On the main network I can get to any URL but this one (above).

Seems rather strange top me, any ideas?
Brian
0
Comment
Question by:brianinlongmont
  • 5
  • 4
  • 3
  • +1
13 Comments
 
LVL 6

Expert Comment

by:ButlerTechnology
ID: 39660630
Do you get the correct IP address when you do an NSLOOKUP on a machine on the main network?

Tom
0
 
LVL 34

Expert Comment

by:Dan Craciun
ID: 39660729
Looks like a DNS issue. Can you access the site by IP?

HTH,
Dan
0
 

Author Comment

by:brianinlongmont
ID: 39660759
NSLookup of myreviewalarm.com returns my primary DNS and the correct IP.
I can't browse to the URL with either the domain name or IP
Brian
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 6

Expert Comment

by:ButlerTechnology
ID: 39660768
Is this an internal site on the DMZ or external on the internet?  IF it is internal  -- Does the web server hosting the site have a route that goes to the Main network?

Tom
0
 

Author Comment

by:brianinlongmont
ID: 39660884
external on the Internet
Brian
0
 
LVL 6

Expert Comment

by:ButlerTechnology
ID: 39660950
Do you have a proxy on your network that clients use?

Tom
0
 

Author Comment

by:brianinlongmont
ID: 39661141
no proxy
goes from 192.168.2.0 to the cisco at .254 and then out
Brian
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39661288
Are you sure you don't have any policies on the ASA that blocks traffic to/from that IP address for the one DMZ.
0
 

Author Comment

by:brianinlongmont
ID: 39664109
No I scanned the current config file form the Cisco and no address is blocked on 64.207..
any other ideas?
Brian
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39664147
I would do a packet capture on the ASA.
0
 

Author Comment

by:brianinlongmont
ID: 39664218
do you know how to set that up?
What about wireshark?
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39664233
I'll have to post how later tonight.  You can do the capture on the ASA and then transfer to another computer and look at it with wireshark.
0
 
LVL 57

Accepted Solution

by:
giltjr earned 500 total points
ID: 39664664
0

Featured Post

Courses: Start Training Online With Pros, Today

Brush up on the basics or master the advanced techniques required to earn essential industry certifications, with Courses. Enroll in a course and start learning today. Training topics range from Android App Dev to the Xen Virtualization Platform.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
FTP Access rule on TMG 1 21
Cisco Policy based routing 2 40
Trouble enabling network for Hyper-V client 10 32
FireFox Add-on Plugins 3 24
#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
This Micro Tutorial will demonstrate how nuggets on the Web are formatted by using Chrome Developer Tools. These tools would not only view the site's CSS but it can also modify it and save the CSS to use on your own site.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question