Cisco Support Community
Community Member

ASA 5515 cannot access to various WEBSITES

Hello everybody,


I have setup an ASA 5515 to replace an old ASA5520. I have done all configurations needed and install the equipment but I have some trouble with access to various websites.

From my DMZ I have no problem to access to internet.

No problem to access to websites below.


From my lan I have some problem to access to some sites like :, etc

DNS working good and returned me the good IP of the servers, but not able to connect to them.

I have tried to ping it, and it is not possible to ping that sites (name or IP) . For all others sites which works right, I am able to ping it ( name or IP)

I have not setup only one ACL to my interface lan permit ip 10.8.X.X any.

Security level of outside interface 0 , lan interface 70, dmz interface 70

My lan is on a subinterface on my ASA 5515 shared with 2 others sub-interface for toip and another lan.


I have done configuration in cli mode but I have installed ASDM to check everything.

The only thing that appears weird is that on TOP 10 Protected servers under SYN attack, I can see the Ip address of website that I cannot access.


Could you help me pls.




Everyone's tags (1)

It is possible that your

It is possible that your Public ip is black listed and those web hosts are activly blocking your IP.  Check if this is the case. Also, make sure the ASA's threat-detection mechanism  has not shun'ed  your internal IP address (the one you are pining from).  Although in the latter case, it should prevent you from accessing anything in the internet.. 

Hope this helps

please rate helpful posts.



CreatePlease to create content