Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

https return traffic denied

Hello,

I have 2 locations with separate Internet connections. I have a web admin at each location connecting to a https performance monitor application at a remote location. At branch 1 the appliction works good with no errors on the PIX. At branch 2 the application creates thousands of messages like Inbound TCP connection denied from x.x.x.x/443 to x.x.x.x/38000-45000 flags FIN PSH ACK on interface outside. Branch 1 has a PIX 525 ver 6.0(1)and the client is on a different subnet than the PIX. Branch 2 has a PIX 506E ver 6.3(3) with the client on the same subnet as the PIX. Also note that the default gateway of the client is not the PIX.

Any idea why the same application gives different results at each branch?

Thanks!

Regards,

john

1 REPLY

Re: https return traffic denied

John

I hope the routing between the client and the server is fine from branch 2 to branch 1... You need to check the following:

1) ACL on branch 2 inside interface, if any to allow TCP 443...

2) ACL on branch 1 outside interface to allow TCP 443 and a static ...

3) FIXUP protocol command on branch 2 PIX.. make sure you have the same config as in branch 1, where the setup works....

send us the configs if possible.. all the best.. rate replies if found useful..

Raj

145
Views
0
Helpful
1
Replies