Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
319
Views
0
Helpful
2
Replies

Need Help tp Access Remote SQL Server Through ASA 5505

Go to solution
thomas.mikkelsen
Level 1
Level 1

‎07-29-2016 02:18 AM - edited ‎03-12-2019 01:04 AM

I have an issue with our ASA 5505 firewall that I can't quiet figure how to solve. We need to access a remote SQL server, so that would be on port 1433. It works when I bypass the firewall completely, however it does not work when we run it through the firewall. I have a feeling that it has something to do with port translation. I have attached the configuration and the packet trace.

Hope someone can point me in the right direction on how to allow this.

Labels:
Preview file
7 KB
Preview file
4 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Kornelia Gutierrez
Level 1
Level 1

‎08-02-2016 12:40 PM

Hi Thomas, 

Could you place captures on both inside and outside interfaces, matching the traffic flow, to verify if the ASA is forwarding the packets, according to the packet tracer the connection is allowed.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Kornelia Gutierrez
Level 1
Level 1

‎08-02-2016 12:40 PM

Hi Thomas, 

Could you place captures on both inside and outside interfaces, matching the traffic flow, to verify if the ASA is forwarding the packets, according to the packet tracer the connection is allowed.

0 Helpful

Go to solution
thomas.mikkelsen
Level 1
Level 1
In response to Kornelia Gutierrez

‎08-02-2016 10:44 PM

Hi Kornelia,

I did the packet capture and low and behold. The traffic does go out, but never gets a reply back from the remote SQL server. Turns out that on the particular modem that the ASA is connected to our ISP in blocking port 1433 for whatever reason, but on our back-up modem, from the same ISP, port 1433 is not blocked. I have now asked them to fix this. Thanks for pointing me in the right direction.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card