PIX 515 and HTTPS on Exchange

Unanswered Question

Every few months PIX stops passing outside traffic for HTTPS (443) port for Exchange server OWA ( internally it works just fine). When I look at xlate it shows 0 bytes and flags aB. I change rule to port 4343 and it works. After a few weeks I change back to port 443 and it works. I dont understand why it randomly stops working and then randomly works again. Does anyone had same or similar problem ? Thank you.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
ccbootcamp Sat, 12/01/2007 - 12:36
User Badges:
  • Gold, 750 points or more

what happens when you bounce the box? does it work when it comes back up? how about when you clear xlate? what version of PIXOS are you runnig? can you post your pix config?



(please rate the post!)

Hi Yevyenig,

As a test, can you take out the following...

access-list outside_access_in permit tcp any host eq https

static (inside,outside) netmask 0 0

And add...

access-list outside_access_in permit tcp any host eq https

static (inside,outside) tcp https https netmask 0 0

access-group outside_access_in in interface outside

Also for good mesure, can you take out the other port access i.e. 4343 access.

Please issue - wr m and clear xlate after the modifications.

Let me know how it goes,



This Discussion