I hope someone will be able to assist with an issue I'm experiencing. I can't connect to a media streaming server, running on a public IP, on port 554 (RTSP) from any PC in the internal network connecting via an ASA 5520 firewall. I have a rule that is allowing port 554, tcp to outbound connections and the inspect rtsp entry under the global_policy policy-map is enabled. I don't understand how the rtsp inspection works but I think it has something to do with the issue after all the tests i have done and described below,
1. I have tested from another PC connected outside the firewall and I have no probs connecting to the streaming server and playing a video file.
2. I have set a firewall rule from the internal network to the public IP of the server allowing all IP traffic for testing purposes and no connection, it fails.
3. I have tried from a different PC connected to a different firewall (non ASA) with the same rule and it works fine
Below is the capture output from the ASA firewall i get when trying to connect to the streaming server from my PC internally when it fails.... (I removed the last two octets of the server's public IP address in the output below)
No need for that now. It seems the Cisco inspection is not compatible with your requirements. I don't there there should be any security issue here (anything different than the inspection) as long as your ACLs are as specific as possible.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...