03-12-2005 10:56 PM - edited 02-21-2020 12:00 AM
hi all,
i have a problem that my outside customer with real ip address (x.x.x.x) cant access a specific services that have a port (Y.Y) how can debug this isuue without make a heavy load in my pix
regards
03-14-2005 03:02 AM
Hi,
are all the ip addresses from outside not able to access the port Y.Y or only one IP x.x.x.x ?? what are the rules applied on the outside interface ? please make sure you have appropriate rules. elaborate more or paste configs of outisde access rules if more help is required from our side
Raj
03-14-2005 03:42 AM
let take its as general problem how can i debug this problem?
thanks
03-14-2005 05:37 AM
helllo
you can use specific debugs and try resolving the problem..
debug packet if_name [src source_ip [netmask mask]] [dst dest_ip [netmask mask]] [[proto icmp] | [proto tcp [sport src_port] [dport dest_port]] | [proto udp [sport src_port] [dport dest_port]] [rx | tx | both]
eg. debug packet outside src x.x.x.x dst Y.Y
This will show you all connections from source x.x.x.x to destination Y.Y.. be very careful when turning on this debug. if there is too much of traffic between these IPs, it might be a problem.
hope this helps..
Raj
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide