Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1073
Views
0
Helpful
2
Replies

ASA 5504 inspection problem

nprdomingo
Level 1
Level 1

‎11-25-2010 07:00 PM - edited ‎03-11-2019 12:14 PM

Hi,

We had implemented a Cisco ASA replacing a Sidewinder FW on our network. The Network has an ironport proxy even before which does HTTP connect (converting port 1-6553 to port 80). When we migrated from Sidewinder to ASA we made all the flow and policies and even natting the same.

The problem is, there are websites that the user cannot access. Seems like it is blocked by the firewall. Those websites where working before on Sidewinder FW but have problems when migrated to ASA. All is fine when we bypass the FW by connecting to F5 load balancer port. So ASA is the problem as isolated. All tcp, ip, and UDP traffic from Proxy are allowed to pass on the ASA but still encountering the problem. I am looking at the inspection policies or other policies that ASA has. Hope someone can help me turn off those inspection policies or whatever is making the ASA filtering so intensive.

Thank you,

Neil

Labels:
0 Helpful
2 Replies 2

rleivaoc
Cisco Employee
Cisco Employee

‎01-16-2011 09:52 PM

Can you post the configuration, and include some logs when the issue is happening?

Sent from Cisco Technical Support iPhone App

0 Helpful

Vinay Sharma
Level 7
Level 7

‎06-03-2011 04:58 AM

Moving your Question to ASA community.

thanks,

Vinay

Thanks & Regards
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card