Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
729
Views
0
Helpful
6
Replies

Unable to access specific web site

rschling22
Level 1
Level 1

‎06-24-2008 01:34 PM - edited ‎03-11-2019 06:04 AM

Hello, I hope this is the right place for this topic. I have an intersting problem in that one of the doctors I work for is trying to access another facilities systems. The remote system is available through a specific URL. they are using a "HTTPS://abc.medical.org:port#/EMR" type of url.

We are completely unable to access this web page from inside our facility. outside our firewall we can access the other site just fine.

We are using an ASA5510. I suspect I have something configured or misconfigured to block access to this site. All other web addresses appear to work fine, except this one.

Do I need to modify something to allow traffic going to an HTTPS site on another port?

I'll take any suggestions you all might have.

Labels:
0 Helpful
6 Replies 6

a.alekseev
Level 7
Level 7

‎06-24-2008 01:59 PM

Can you ping abc.medical.org from inside?

0 Helpful

rschling22
Level 1
Level 1
In response to a.alekseev

‎06-24-2008 02:02 PM

Can I ping from inside? No! I am unable to ping, sorry I forgot to mention that. I will try to ping from outside the firewall when I get home tonight to verify they actualy do respond though. Thanks!

0 Helpful

rschling22
Level 1
Level 1
In response to rschling22

‎06-24-2008 06:59 PM

For what it is worth, I did test a ping from my home computer. While I can access the web page from home, the ping does NOT respond at all.

0 Helpful

Marwan ALshawi
VIP Alumni
VIP Alumni
In response to rschling22

‎06-24-2008 08:28 PM

to make ping you need to use this command

permit icm any inside or outside eq echo

and if u want to ping from the asa u need to add echo-reply too

can clearify ur problem in more details

thanks

0 Helpful

mohammed_moustafa
Level 1
Level 1
In response to rschling22

‎06-25-2008 02:09 AM

Hi Dear,

you may have to permit trafic from inside network to HTTPS services, in the access list applied to the inside interface add permit tcp x.x.x.x 255.x.x.x any eq https, sure replace x.x.x.x with your subnet and mask.

if it didn't work make that test and update me with the result: nslookup from your pc in the inside network and quiry the url without https or port number just ABC.organization.com

B.regards,

0 Helpful

rschling22
Level 1
Level 1
In response to mohammed_moustafa

‎06-25-2008 06:21 AM

thanks for the suggestions, so far nothing works.

someone asked for me to redifine my problem so here goes.

From inside my hospital network, we are unable to access a remote hospitals system. the remote system has set up a dedicated web address specifically for the physicians (and whoever) to access thier systems remotely.

The remote website uses the format of " HTTPS://imed.remotehospital.org:9443/iMed "

From my home computer I can access the remote web page, but I can not Ping the remote IP address.

From my hospital network, we can NOT access the page, nor ping. however I think they have turned off the ping reply on thier end.

I have been using the Logging feature in my ASA ASDM system to try to monitor what happens when accessing the remote system. I get a syslog entry stating an outbound connection has been built, but the remote web page will not diplay.

I do use other HTTPS websites, and none of them have had any probles so far.

I suspect the problem may be in the :9443 port number on the remote site, but have no idea how to work around it.

I have no settings on my local computers that would prevent this from working, that I know of.

thanks for any and all suggestions

--Mouhammed, I tried the ACL you suggested, no luck. Thanks!

Rob.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card