Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
858
Views
5
Helpful
2
Replies

Port 80 query

Go to solution
aok
Level 1
Level 1

‎10-17-2018 02:38 PM - edited ‎02-21-2020 08:22 AM

Hello

 

I blocked port 80 through our Cisco ASA to a particular IP but am still seeing connections being permitted in the logs. The only configuration for the IP is a NAT statement mapping it to an internal IP. Any ideas why?

 

Thanks

A

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
aok
Level 1
Level 1
In response to Dennis Mink

‎10-17-2018 04:00 PM

Sorry, figured it out! I have multiple public IP addresses NATted to the same private IP, and there was a rule allowing HTTP to one of the public IP objects, which effectively allowed HTTP to anything destined for the private IP. Once I removed that rule HTTP is blocked.

View solution in original post

2 Replies 2

Go to solution
Dennis Mink
VIP Alumni
VIP Alumni

‎10-17-2018 03:26 PM

Can you send config and an extract of the log where you are seeing that port 80 is still being allowed?

 

(try the packet tracer tools in ASDM to see if the packet is allowed/denied or not)

Please remember to rate useful posts, by clicking on the stars below.

0 Helpful

Go to solution
aok
Level 1
Level 1
In response to Dennis Mink

‎10-17-2018 04:00 PM

Sorry, figured it out! I have multiple public IP addresses NATted to the same private IP, and there was a rule allowing HTTP to one of the public IP objects, which effectively allowed HTTP to anything destined for the private IP. Once I removed that rule HTTP is blocked.

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card