Hi Team,
I got a question, how to troubleshoot and mitigate the issue. Here is the seen.
10.25.105.10 in DMZ of ASA Cannot communicate with 10.153.16.152 lies inside of ASA. Where to start to trouble shoot this ?
So far, i only did packet tracer from DMZ to Inside and it comes up with following:
packet-tracer input DMZ tcp 10.25.105.10 8080 10.153.16.152 8080 det
Phase 1 Allowed
Phase 2 Allowed
Phase 3 Allowed
Drop-reason: (acl-drop) Flow is denied by configured rule
Phase: 4
Type: ACCESS-LIST
Subtype:
Result: DROP
Config:
Implicit Rule
Additional Information:
Forward Flow based lookup yields rule:
in id=0x46516a8, priority=11, domain=permit, deny=true
hits=1955, user_data=0x5, cs_id=0x0, flags=0x0, protocol=0
src ip=0.0.0.0, mask=0.0.0.0, port=0
dst ip=0.0.0.0, mask=0.0.0.0, port=0
Plz guide me a si am newbe in Security. Thanks