Am running a Cisco 871 Ethernet Access Router. Recently used SDM to configure a simple firewall. The firewall was totally configured by SDM and using only SDM defaults. The security level is set to high. Since the firewall was installed, the hosts on the LAN have trouble accessing lower level pages on websites, ie; can log on to a website, can receive the home page, but have trouble accessing a sub-page of the website by clicking on a url button on the web page. The page is initially sent to the host and then deleted with a "cannot connect the page" error. This occurs on all the hosts on the LAN. This is quite obviously a Firewall problem but I don't know what it is. Can someone enlighten me?
Your reply has helped greatly. It has narrowed down the problem area. I did, however,have problems entering the commands that you provided (see attachment). The IOS CLI would not accept the complete ip inspect command, it would only accept "ip inspect name SDM_HIGH http" Wouldn't accept "java-list (100 or 101)alert on timeout 3600" So I entered what I could (see attach). The "access-list 100 permit any any" was already entered. This helped the problem and I was able to browse deeper into the web site before getting the "cannot connect" error. I started looking on the console port and saw that the "can not connect" error was associated with "%APPFW-4-HTTP_STRICT_PROTOCOL: Sig:15 HTTP protocol violation" I don't know exactly what that means but when I deleted the "strict-http action reset alarm" in the application http, THAT problem went away. I don't know if I cleared up one problem but set myself up for another one???
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...