Solved: https access blocked from dmz to inside

tyr668 · ‎07-02-2023

hi guys ,

why can't my pc surf https of the web server in dmz , but it can for port 80. i've tried almost every combination but it still doesn't work. when i did a simluation of the packet , it reaches the web server but when going back to the firewall, it stops at the firewall.

Flavio Miranda · ‎07-02-2023

The attached file is working.

I made changes on the firewall. Take mine and yours and compare please.

View solution in original post

Flavio Miranda · ‎07-02-2023

Hi @tyr668

Try this way:

access-group allow_web in interface dmz
access-group allow_web out interface dmz
access-group allow_web in interface inside
access-group allow_web out interface inside

tyr668 · ‎07-02-2023

still can't access via https , but can access via http

Flavio Miranda · ‎07-02-2023

Can you share the project and I can take a look?

tyr668 · ‎07-02-2023

sure , here's the folder

MHM Cisco World · ‎07-02-2023

Change http server with new one'

It can bug

Flavio Miranda · ‎07-02-2023

From where to where are you testing exactly?

tyr668 · ‎07-02-2023

the internal pcs to dmz web server

Flavio Miranda · ‎07-02-2023

The attached file is working.

I made changes on the firewall. Take mine and yours and compare please.