can't get http protocol to work thru cisco 2621xm firewall

can't get http protocol to work thru cisco 2621xm firewall

NewsGroups | Search | Tools
 comp.dcom.sys.cisco  Post an article  get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content  add this group's latest topics to your Google content  YahooMyWeb Yahoo!  Google Google  Windows Live Favorites Windows Live  del.icio.us del.icio.us  digg digg  Add to Netscape Netscape
Subject Author Date
can't get http protocol to work thru cisco 2621xm firewall Jog Dial 08-26-2004
Posted by Jog Dial on August 26, 2004, 5:03 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Hi,

I have a new cisco 2621xm that I am just learning my way around. I'm
using SDM to try and configure the firewall. I've pretty much got it
all sussed, accept it won't let http protocol through. FTP, ping,
name lookups, are all working fine, but http just gets stuck. I've
turned logging on for all the rules and can't see it being stopped.
I've added tcp inspection as an application and also http as an
application, togeather and on their own and still no go. I've
googled, and checked cicso web site and can't find any mention of this
as being a problem, so I must be doing something wrong... but, I can
configure FTP and it works and when I delete the FTP app, it stops
working as expected, but doing the same thing for http doesn't work.
I am on IOS 12.3(8)T. As I'm currently not concerned about java
applet inspection, I would assume that just configuring tcp inspection
rule would be enough, but I've been stuck on this for 3 days now and
so I have to ask if anyone has any ideas on what I could be doing
wrong. If there's any additional info I should post, please let me
know.. I am currently just going with all the defaults on the firewall
pretty much.

Thanks

JogDial


Posted by Russell Lusignan on August 26, 2004, 1:57 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Can you post your config (without passwords or IPs) to the news group
so we can have a look at your rules?

-Russ
CCIE #9473 (Security/R&S), CISSP

jogdial@hotmail.com (Jog Dial) wrote in message
> Hi,
>
> I have a new cisco 2621xm that I am just learning my way around. I'm
> using SDM to try and configure the firewall. I've pretty much got it
> all sussed, accept it won't let http protocol through. FTP, ping,
> name lookups, are all working fine, but http just gets stuck. I've
> turned logging on for all the rules and can't see it being stopped.
> I've added tcp inspection as an application and also http as an
> application, togeather and on their own and still no go. I've
> googled, and checked cicso web site and can't find any mention of this
> as being a problem, so I must be doing something wrong... but, I can
> configure FTP and it works and when I delete the FTP app, it stops
> working as expected, but doing the same thing for http doesn't work.
> I am on IOS 12.3(8)T. As I'm currently not concerned about java
> applet inspection, I would assume that just configuring tcp inspection
> rule would be enough, but I've been stuck on this for 3 days now and
> so I have to ask if anyone has any ideas on what I could be doing
> wrong. If there's any additional info I should post, please let me
> know.. I am currently just going with all the defaults on the firewall
> pretty much.
>
> Thanks
>
> JogDial


Similar ThreadsPosted
fixup protocol for http July 13, 2005, 8:52 pm
Getting a VPN to work through a Cisco firewall January 11, 2006, 7:35 pm
AS-5500: Do access lists work the same in firewall vs. VPN? February 22, 2007, 6:31 pm
Cisco 2621xm Input and CRC Errors July 6, 2005, 6:24 am
Cisco 2621XM interface metrics April 20, 2007, 1:50 pm
cisco 2621xm fast ethernet to SHDSL modem June 19, 2007, 2:36 am
Connecting to a PIX firewall using cisco VPM client though a Linksys WAG54G with eth firewall enabled December 11, 2004, 5:16 pm
Cisco 837 PAT http question March 4, 2005, 2:14 am
Cisco IP HTTP server add user October 18, 2006, 10:03 am
Problems with http://www.certmanager.net/cisco/ November 23, 2007, 3:22 pm

other useful resources:
The Federal Communications Commission (FCC)
Telecommunications Industry Association
Electronic and Software Security Products and Services
International Telecommunication Union

Custom CGI Perl and PHP programming by 1-Script.com

Contact Us | Privacy Policy
The site map in XML format XML site map