Firewall issue traffic

lecarbajalp — Tue, 12 Mar 2019 00:20:16 GMT

Hello,

I have an issue with a firewall, there are servers and load balancer behind my firewall that need to reach a host in the internet

these are the rules:

acl permit tcp X.X.X.X Y.Y.Y:Y 8406 (this works ) but using the IP not the hostname (in this case i think there is an issue with the DNS)

its applied in the inside interface im able to see the hits in the ACL in order to reach the internet there is a PAT).

but this

acl permit tcp X.X.X.X Z.Z.Z.Z 443 (this doesnt work using the IP or the hostname) , im not able to see the traffic in the inside interface from this host X.X.X.X

ITs similar to the first scenario it only change the IP and the port, (in order to reach the internet there is a PAT)

what could be the problem,

capture also didnt show me nothing.

Regards,

Firewall issue traffic

V S Narayana Chivukula — Thu, 08 Nov 2012 03:43:51 GMT

Hi,

If you are not seeing the traffic destined to Z.Z.Z.Z on the inside interface and if you confirmed the same using packet captures, then check the routing on internal devices to confirm if the packets destined to Z.Z.Z.Z are routed to the ASA or not.

Thanks.

topic Firewall issue traffic in Network Security

Firewall issue traffic

Firewall issue traffic