I have a strange issue in regards to our fwsm and an Oracle RAC deployment. See scenario below:
FWSM in transparent mode running 3.2(10) code.
Context name = backup
inside interface = vlan 10 (security level 100) ****same addressing on both sides ie 192.168.2.X****
outside interface = vlan 20 (security level 0) ***** same addressing on both sides ie 192.168.2.X*****
This is a temporary setup while we transition our equipment off of the old infrastructure to the new one. Everything work with this setup, but certain parts of the Oracle RAC cannot create a new listener for the cluster when one box is on vlan 10 and the other is on vlan 20. I've wiresharked the interfaces on either side and nothing jumps out at me, but not knowing how the oracle application really works makes it hard to look through wireshark.
Server 1 = 192.168.2.2 (vlan 10)
Server 2 = 192.168.2.3 (vlan 10)
Server 3 = 192.168.2.4 (vlan 20)
When I do a show conn from the context I see connections from SERVER 3 to server 1 and server 2 UDP and TCP. When I do a show xlate I see server 1 and server 2, but NO server 3.
That seems really wierd to me, so I'm wondering if anyone has any ideas on what may be happening. The acl right now is fully open in each direction and all other applications/resources seem to be working, just not the oracle listener part.