Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Cisco ASA Clientless Web VPN

Posted on 2014-03-12
2
Medium Priority
?
538 Views
Last Modified: 2014-03-23
I have the below scenario...
I have a Cisco ASA firewall connected to Internet via public IP.
I have a URL published in the internet pointing to hte public IP
ex abc.test.com -> 1.1.1.1

In the ASA i have configured SSL VPN to send the request to my web server.
The ASA is configured to send the request to Web Server on port 5555
10.10.10.10:5555


So whenever user browse the URL it hits the ASA & ASA sends the request to the Web server

The web server intern connects to the App Server . The communication between App & Web Server occurs on many ports.
When the Web server talks back to the Firewall what port should the Web server should use. Does it uses the port 5555 or any other port which is used between the Web & App server.
0
Comment
Question by:SrikantRajeev
2 Comments
 
LVL 12

Accepted Solution

by:
Henk van Achterberg earned 1500 total points
ID: 39936128
When the ASA is connecting to the webserver it uses a random source port between 1025 and 65535. The destination port is 5555. When the server talks back to the ASA the destination port is the random port which was chosen by the ASA. The source port is 5555.
0
 
LVL 1

Author Closing Comment

by:SrikantRajeev
ID: 39949618
Thanks
0

Featured Post

Identify and Prevent Potential Cyber-threats

Become the white hat who helps safeguard our interconnected world. Transform your career future by earning your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Getting to know the threat landscape in which DDoS has evolved, and making the right choice to get ourselves geared up to defend against  DDoS attacks effectively. Get the necessary preparation works done and focus on Doing the First Things Right.
Will you be ready when the clock on GDPR compliance runs out? Is GDPR even something you need to worry about? Find out more about the upcoming regulation changes and download our comprehensive GDPR checklist today !
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Suggested Courses

916 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question