Solved: Re: IOS FW IDS Audit dropping HTTPS

desmckee · ‎07-14-2005

Hi,

i have a 2651XM router running 12.3.7-T8 code thats is configured as an IOS FW. There is one public NAT entry for an OWA server. If i enable the sudit signatures inbound on the WAN interface, i cannot connect to the OWA server using HTTPS. No signature alert is displayed, but you do get a HTTPS connection to that port. In IE 6 the page just times out, but in Mozilla you get the message 'The connection to xxx has terminated unexpectedly. Some data may have been transferred'.

Has anybody had problems with FW IOS using HTTPS connections?

Thanks

gfullage · ‎07-14-2005

You're probably hitting CSCee54516 (http://www.cisco.com/cgi-bin/Support/Bugtool/onebug.pl?bugid=CSCee54516&Submit=Search),

this bug says it's on an 831 but this is a duplicate of another much larger bug that basically affected all inbound traffic through all routers when "ip audit" was turned on. Click on the link to the Duplicate bug and check out the fixed releases.

View solution in original post

gfullage · ‎07-14-2005

You're probably hitting CSCee54516 (http://www.cisco.com/cgi-bin/Support/Bugtool/onebug.pl?bugid=CSCee54516&Submit=Search),

this bug says it's on an 831 but this is a duplicate of another much larger bug that basically affected all inbound traffic through all routers when "ip audit" was turned on. Click on the link to the Duplicate bug and check out the fixed releases.