cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Welcome to Cisco Firewalls Community


89
Views
0
Helpful
1
Replies
Beginner

After upgrading from ASA 8.2 to 9.1(2) not able to get web site

Dears,

ASA Version has been upgraded from 8.2 to 9.1(2). Since then, website is not accessible from outside.

 

Diagnosis:

 

Many web sites are deployed behind the ASA. When anyone accesses website from outside, the following error is reported: The page cannot be displayed. No issues have been reported with any other websites.

In the ASA, two different public subnets are in use in order to allow accessing the website from the public domain. No issues have been reported so far with the first subnet. The website is mapped to a public address in the second subnet. When the website is mapped to an IP address in the working subnet, the website is accessible from outside. As a workaround, this is applied and the website is up and running.

As the website is working fine with the second subnet, NAT and ACL configuration is fine. We have turned on logging in the ASDM, but no traffic was observed on the ASA for the non-working subnet. On the other hand, the traffic was noticed on the ASDM for the working subnet.

The working subnet is XX.YY.XX.X

Non working subnet is XX.YY.YY.X

The outside interface ip is XX.YY.XX.X (Working Subnet)

 

Tried to assign one ip address to the PC from non working subnet and connected to the Switch , its pinging from outside

 

 

1 REPLY 1
Enthusiast

HiHave you tried using packet

Hi

Have you tried using packet tracer?