Hello, I hope this is the right place for this topic. I have an intersting problem in that one of the doctors I work for is trying to access another facilities systems. The remote system is available through a specific URL. they are using a "HTTPS://abc.medical.org:port#/EMR" type of url.
We are completely unable to access this web page from inside our facility. outside our firewall we can access the other site just fine.
We are using an ASA5510. I suspect I have something configured or misconfigured to block access to this site. All other web addresses appear to work fine, except this one.
Do I need to modify something to allow traffic going to an HTTPS site on another port?
you may have to permit trafic from inside network to HTTPS services, in the access list applied to the inside interface add permit tcp x.x.x.x 255.x.x.x any eq https, sure replace x.x.x.x with your subnet and mask.
if it didn't work make that test and update me with the result: nslookup from your pc in the inside network and quiry the url without https or port number just ABC.organization.com
someone asked for me to redifine my problem so here goes.
From inside my hospital network, we are unable to access a remote hospitals system. the remote system has set up a dedicated web address specifically for the physicians (and whoever) to access thier systems remotely.
From my home computer I can access the remote web page, but I can not Ping the remote IP address.
From my hospital network, we can NOT access the page, nor ping. however I think they have turned off the ping reply on thier end.
I have been using the Logging feature in my ASA ASDM system to try to monitor what happens when accessing the remote system. I get a syslog entry stating an outbound connection has been built, but the remote web page will not diplay.
I do use other HTTPS websites, and none of them have had any probles so far.
I suspect the problem may be in the :9443 port number on the remote site, but have no idea how to work around it.
I have no settings on my local computers that would prevent this from working, that I know of.
thanks for any and all suggestions
--Mouhammed, I tried the ACL you suggested, no luck. Thanks!
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...