MS Windows Media Server and PIX/ASA upgrade

Unanswered Question
Oct 24th, 2007
User Badges:

I've just replaced a PIX 515 with an ASA5510 and have lost connectivity between a remote host running MS Windows Media Player trying to stream video back to a Windows Media Server behind the firewall.


I've opened all TCP/UDP ports inbound to the server from any source IP, to no avail. When I put the PIX 515 back, the problem goes away. Port blocking is not the issue, since all inbound ports are open from any IP.


Is there an 'inspect' statement or some other configuration in the new ASA that needs to be added, so it will pass the video stream as it works in the PIX 515?


Will Cisco TAC assist in an issue that may or may not be application related?


Thanks for any tips or direction,

Marc

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
drumrb0y Fri, 10/26/2007 - 10:48
User Badges:

I fixed it:


CSCsd82714 Bug: RTSP fails with Windows media player

Symptom:

RTSP stream setup is failing with "inspect rtsp" enabled for clients to a

statically translated server behind the firewall


Conditions:

Client on the outside is connecting to a server behind the PIX. The server

has a static configured and access-lists allowing this traffic:


static (DMZ,outside) 172.16.1.1 10.1.1.1 netmask 255.255.255.255

access-list outside_access_in permit ip any host 172.16.1.1

access-group outside_access_i in interface outside


Setting up a connection, the client information is passed to the server.

The server information is passed back to the host. The host then sends a

reset before the SETUP message is passed


Workaround:

Disable "inspect rtsp" within the configuration

Actions

This Discussion