Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
450
Views
0
Helpful
1
Replies

Firewall issue traffic

lecarbajalp
Level 1
Level 1

‎11-07-2012 05:49 PM - edited ‎03-11-2019 05:20 PM

Hello,

I have an issue with a firewall, there are servers and load balancer behind my firewall that need to reach a host in the internet

these are the rules:

acl permit tcp X.X.X.X Y.Y.Y:Y 8406  (this works ) but using the IP not the hostname (in this case i think there is an issue with the DNS)

its applied in the inside interface  im able to see the hits in the ACL  in order to reach the internet there is a PAT).

but this

acl permit tcp X.X.X.X Z.Z.Z.Z 443 (this doesnt work using the IP or the hostname) , im not able to see the traffic in the inside interface from this host X.X.X.X

ITs similar to the first scenario it only change the IP and the port, (in order to reach  the internet there is a PAT)

what could be the problem,

capture also didnt show me nothing.

Regards,

Labels:
0 Helpful
1 Reply 1

V S Narayana Chivukula
Cisco Employee
Cisco Employee

‎11-07-2012 07:43 PM

Hi,

If you are not seeing the traffic destined to Z.Z.Z.Z on the inside interface and if you confirmed the same using packet captures, then check the routing on internal devices to confirm if the packets destined to Z.Z.Z.Z are routed to the ASA or not.

Thanks.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card