Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
643
Views
1
Helpful
3
Replies

Web Server not accessible behind FMC

00u18jg7x27DHjRMh5d7
Level 1
Level 1

‎10-12-2023 08:57 AM

Rolling out new FMC deployment the Web server, Web sights are not reachable. Doing google search the redirect times out, but typing https://wxyz.com takes you to the VPN login. Doing packet trace it shows all traffic is allowed. Changed ports for web server and no change. I have added ACL and NAT for Web Server and VPN bellow.  

Not sure what is missing 

 

 

Labels:
Preview file
40 KB
Preview file
65 KB
0 Helpful
3 Replies 3

balaji.bandi
Hall of Fame
Hall of Fame

‎10-12-2023 09:13 AM - edited ‎10-12-2023 09:13 AM

what version of FTD / FMC

i tried some time back using FDM in my Lab still works. (same stepd FMC should work) - try packet tracer

https://www.balajibandi.com/?p=1855

check this thread :

https://community.cisco.com/t5/network-security/cisco-fmc-nat/m-p/4825506

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

00u18jg7x27DHjRMh5d7
Level 1
Level 1
In response to balaji.bandi

‎10-12-2023 02:42 PM

Running 7.0.5, I will give this a try tomorrow and let you know. Thanks

0 Helpful

00u18jg7x27DHjRMh5d7
Level 1
Level 1

‎10-16-2023 11:32 AM

Update not sure what's going on FMC will not let me add the Auto NAT rule. Says cannot add a rule when port is in use? With current config I am getting the following drop when doing packet tracer. 

Phase: 9
Type: NAT
Subtype: rpf-check
Result: DROP
Config:
nat (Outside,Inside_Trunk) source static any interface destination static Web_Svr_New any
Additional Information:

Any suggestions I should try.

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card