Hi Shea, I'm faced with the same issue as Chambeja25 where by I need to allow access to the whole of amazonaws.com domain. I've tried your suggestion of *.amazonaws.com and .amazonaws.com and both entries can't be entered due to an error message. I did try specifying amazonaws.com as a top level root domain entry, but this doesn't work as tested through a packed trace showing the access through a more open rule further down the rule base and not being captured by my specific rule added. Please can you advise how you managed to enter both the *.domain.com and .domain.com entries.
... View more
Hello All, Just a quick one but our server team have reported that backup's using UDP from the servers in the DMZ to the internal backup system are timeing out around or just after 2 hours, and the restores also using UDP are also experincing the same symptons. The traffic is passing through a CISCO 5585 running ASA 8.2(5) in multiple context mode. I have checked the Global timeouts section and this is all greyed out and additionally I cannot see any class maps or policy maps which would subject this traffic to any time out controls. I have also checked the Service Policy Rules section and cannot find anything to do/ linked to UDP connection timeouts. Additionally what king of checks, captures or logging can I tune to determine in the logs what could be causing this issue as the connection time out termination request could possibly be coming from the backup syste. Additionally the back system is Lagarto but I don't know any software versions but i'm sure I can ask the serevr team. Regards, Karl Blaylock
... View more