this is my scenario:
- an inside host that tries to login and then access to a network device that is located outside via HTTP.
- if the HTTP communication between inside host and outside network device runs on an Extranet VPN, it works well.
Last situation is very strange.
The "Intranet" communication between inside host and outside network device goes through a Cisco ASA 5540 with sw 8.0(2).
Both the inside and outside interfaces have an ingress ACL that permits all IP traffic.
There is no nat control.
Inside interface has obviously a greater security level than outside interface.
I notice that:
- the counter "packets dropped" of outside interface increases after the login is succesful
- if I issue che "show asp drop" command, the counter "Flow is denied by configured rule" increases after the login is succesful.
Anyone can help me?