problem with accessing a website on the dmz from internal

fwilliams-iumg · ‎01-16-2012

i get a syslog message "deny tcp (no connection) from 173.46.173.5/16220 to HGREAK_GLB/443 flags RST on interface outside" when I am trying to access a website that is on my DMZ from internal. The browser displays "cannot display the webpage". Please help

Julio Carvajal · ‎01-16-2012

Hello Frank,

So you are attempting to access the website on the DMZ from an internal network,

Are you using a public DNS on the outside or an internal DNS?

Can you do the following and give it a try?

static (dmz,inside) HGREAK_GLB(ipadd) HGREAK_GLB(ipadd)

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

fwilliams-iumg · ‎01-17-2012

Thanks jcarvaja for your response. It turns out that a change to our Websense platform was causing this error. We have the correct static/nat config but a change was made and Websense did not work correctly in the sense it did not show a blocked page but when the changes were backed out, all was right with the world again.

Julio Carvajal · ‎01-17-2012

Hello Frank,

Great to hear that everything is working now, Please mark the question as answered so future users can check this discussion as a reference on their problems.

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC