Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2025
Views
0
Helpful
17
Replies

DMZ web server; traffic gets in, can't get out.

shortnathan
Level 1
Level 1

‎12-14-2007 11:20 AM - edited ‎03-12-2019 05:51 PM

Hi,

I have a webserver in the dmz which is accessible from the outside. However, I am unable to access interenet from the web server. Help!

Labels:
Preview file
5 KB
0 Helpful
17 Replies 17

shortnathan
Level 1
Level 1
In response to Alan Huseyin Kayahan

‎12-18-2007 05:19 PM

See attached.

Preview file
5 KB
0 Helpful

Alan Huseyin Kayahan
Level 7
Level 7
In response to shortnathan

‎12-19-2007 01:00 AM

ASA allows the traffic, nothing is wrong.

Actually I doubt that 12.xx.xx.71 is a valid DNS server

12.xx.xx.90 is your interface IP and 12.xx.xx.71 is an IP that is in your range with 255.255.255.224 mask

I recommend you using another public DNS. For example

67.138.54.100

In TCP/IP properties of your server, set 67.138.54.100 as preferred DNS server. And in ASA, do the following modification

object-group network ISP_DNS

network-object host 67.138.54.100

Regards

0 Helpful

shortnathan
Level 1
Level 1
In response to Alan Huseyin Kayahan

‎12-19-2007 10:11 AM

It's confusing because of the scrubbed config, the second and third octets of the DNS server are different from those of my /27. The DNS server has been verified working, our domain controllers are all using it from the inside interface.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card