Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
722
Views
0
Helpful
1
Replies

Firepower Port Redirection?

cyoung1981
Level 1
Level 1

‎05-15-2019 09:39 PM - edited ‎02-21-2020 09:08 AM

Hello. I am looking at an issue for someone that's got me a little baffled. They have an ASA5550 with Firepower. They are having trouble reaching a certain site. You go to the url and it redirects you to the right location. The redirect should go to a destination port of 9443. According to the captures they sent me they are going to 443 instead. This happens no matter what pc or browser. Here is an example of what we see in their capture.

 

1: 07:47:28.670589       x.x.x.x.3278 > x.x.x.x.443: S 3786853325:3786853325(0) win 64240 <mss 1460,nop,wscale 8,nop,nop,sackOK>

And here is an example of what I get when I do it from my location. 

 

1: 04:22:05.754340 x.x.x.x.58295 > x.x.x.x.9443: SWE 3064661061:3064661061(0) win 8192 <mss 1380,nop,wscale 8,nop,nop,sackOK>

 

I am not all that familiar with firepower. Where might I look for something that would force the packet away from 9443 to 443?

Labels:
0 Helpful
1 Reply 1

integration.cisco
Level 1
Level 1

‎05-16-2019 05:56 AM

Hello,

 

Please check with a capture packet from the sending device which ports are used?

The FTD can't do much on incoming packet before they arrive.

 

best regards.

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card