05-16-2011 01:54 AM - edited 03-11-2019 01:33 PM
Ok, the bit that works.
I have a rule on our ASA, source=dmz server, destination=domain server, service=domain which works fine and permits access to my domain controllers and access shared folders from a test DMZ server.
..and the bit that doesn't.
What I cannot fathom is accessing member servers even though I've added another rule but with services 53, 137-139 and 445 (all TCP/UDP)
Help as always appreciated.
Thanks
05-18-2011 08:37 AM
Hi Mark,
Thats great news, had a hunch that you are missing this statement. To chcek the nat i ASDM, you need to go to Firewall ----> Nat rules and you would see this rule aded there...I am not really sure about the exact tab but it should be there....I am happy it worked for you.
P.S.- rate posts which are helpful.
Thanks,
Varun
05-19-2011 12:51 AM
Hi Varun,
I checked the NAT rules and it just didn't register, if I had bothered to try and access another DC rather than concentrating on just one I reckon the lightbulb would have illuminated LOL. Proof that another set of eyes is so worthwhile in these situations.
Thanks again and I'll go through the posts as requested.
Mark
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide