12-21-2009 09:47 AM - edited 03-11-2019 09:50 AM
I am behind an ASA 5510 and there are 2 sites in particular that are giving me errors.
When I try to access: http://ssdi.genealogy.rootsweb.com/cgi-bin/ssdi.cgi
I get a "Problem loading page" error. "the connection to the server was reset" by firefox. The same error happens in IE.
Yet, if I go to another machine that doesn't go through the ASA 5510, I can access the page with no problems at all. We have another timeout issue that is experianced through an IPSec tunnel and we think that these two issues may go hand-in-hand with one another.
The ASA real time logging shows the connection happening, "192.168.2.90 Accessed URL 66.43.27.25:/cgi-bin/ssdi.cgi"
I have inspection setup as below:
!
class-map inspection_default
match default-inspection-traffic
!
!
policy-map type inspect dns preset_dns_map
parameters
message-length maximum 512
policy-map global_policy
description ftp
class inspection_default
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
inspect dns preset_dns_map
inspect ils
inspect ftp
inspect icmp
inspect icmp error
inspect http
!
service-policy global_policy global
any thoughts? Thanks for all help!
02-08-2010 07:05 AM
wow ! Nice to know. I will book mark this thread to send it on to some customers who adamontly refuse to believe that the IP address may matter. where PAT will fail and 1-1 may work.
Being listed in the RBL database (port 25) is a reason for not being able to load some web pages (port 80) - is an ultimate shocker.
Doesn't make any sense...
-KS
02-09-2010 08:23 AM
That's what i though as well, till I came across this apache module. http://sourceforge.net/projects/mod-spamhaus/
Apache is actually using DNSBL of spamhaus as a http DDos Filtering from Bots attacks.....
So better update you list of possible reasons :-).
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: