Re: Problem configuration ASA 8.2 With HTTP access OUTDOOR - Page 2

pierredaridan · ‎08-06-2012

Hello

I have problem i want to access to my http server in my local network from outside

192.168.2.42 : it my server http

195.X.X.X its my internet IP but it was connected in eth 0/4

static (DMZ,Orange) 195.X.X.X 192.168.2.42 netmask 255.255.255.255

access-list outside-acl permit tcp any host 195.X.X.X eq 80

access-group outside-acl in int orange

but its not good why

thanks for your help

pierredaridan · ‎08-08-2012

show capture asp | inc 195.6.100.5

1: 10:04:36.360516 802.1Q vlan#5 P0 90.149.249.151 > 195.6.100.5: icmp: host 90.149.249.151 unreachable - admin prohibited filter

2: 10:04:37.985300 802.1Q vlan#5 P0 90.149.249.151 > 195.6.100.5: icmp: host 90.149.249.151 unreachable - admin prohibited filter

6: 10:04:39.363277 802.1Q vlan#5 P0 90.149.249.151 > 195.6.100.5: icmp: host 90.149.249.151 unreachable - admin prohibited filter

7: 10:04:39.651043 802.1Q vlan#5 P0 208.82.7.77.443 > 195.6.100.5.50051: . ack 660554390 win 8

8: 10:04:39.654293 802.1Q vlan#5 P0 208.82.7.77.443 > 195.6.100.5.50051: . ack 660554427 win 7

10: 10:04:40.992304 802.1Q vlan#5 P0 90.149.249.151 > 195.6.100.5: icmp: host 90.149.249.151 unreachable - admin prohibited filter

14: 10:04:45.362377 802.1Q vlan#5 P0 90.149.249.151 > 195.6.100.5: icmp: host 90.149.249.151 unreachable - admin prohibited filter

16: 10:04:46.999856 802.1Q vlan#5 P0 90.149.249.151 > 195.6.100.5: icmp: host 90.149.249.151 unreachable - admin prohibited filter

245: 10:10:34.160636 802.1Q vlan#5 P0 173.37.144.208.443 > 195.6.100.5.65501: . ack 4235667661 win 32768

271: 10:11:00.442954 802.1Q vlan#5 P0 69.171.242.74.80 > 195.6.100.5.57997: R 280852662:280852662(0) ack 3134889716 win 0 Drop-reason: (acl-drop) Flow is denied by configured rule

289: 10:11:06.073665 802.1Q vlan#5 P0 69.171.242.74.80 > 195.6.100.5.48029: R 4181768410:4181768410(0) ack 4072373161 win 0 Drop-reason: (acl-drop) Flow is denied by configured rule