Allow me to ping internet but browser have no internet reply
hi all,
below is my config that it can ping internet (on inside network) or even trace to internet but can't open any site on the IE browser (i tested the client browser to a real internet and it works).
: Saved
: Written by enable_15 at 10:49:24.439 UTC Mon Apr 29 2013
ASA Version 8.6(1)2
hostname asa
domain-name abc.com
enable password NuLKvvWGg.x9HEKO encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
names
interface GigabitEthernet0/0
nameif outside
security-level 0
ip address 180.40.20.188 255.255.255.248
interface GigabitEthernet0/1
nameif dmz
security-level 50
ip address 10.0.80.1 255.255.255.0
interface GigabitEthernet0/2
nameif inside
security-level 100
ip address 10.0.90.1 255.255.255.0
interface GigabitEthernet0/3
shutdown
no nameif
no security-level
no ip address
interface GigabitEthernet0/4
shutdown
no nameif
no security-level
no ip address
interface GigabitEthernet0/5
shutdown
no nameif
no security-level
no ip address
interface Management0/0
nameif management
security-level 100
ip address 192.168.1.1 255.255.255.0
management-only
ftp mode passive
dns server-group DefaultDNS
domain-name abc.com
same-security-traffic permit inter-interface
same-security-traffic permit intra-interface
object network dmz-subnet
subnet 10.0.80.0 255.255.255.0
object network inside-subnet
subnet 10.0.90.0 255.255.255.0
access-list dmz_access_in extended permit icmp 10.0.80.0 255.255.255.0 10.0.90.0 255.255.255.0
pager lines 24
logging enable
logging asdm informational
mtu management 1500
mtu inside 1500
mtu dmz 1500
mtu outside 1500
no failover
icmp unreachable rate-limit 1 burst-size 1
no asdm history enable
arp timeout 14400
object network dmz-subnet
nat (dmz,outside) dynamic interface
object network inside-subnet
nat (inside,outside) dynamic interface
access-group dmz_access_in in interface dmz
route outside 0.0.0.0 0.0.0.0 180.40.20.185 1
route dmz 10.0.80.0 255.255.255.0 10.0.80.1 10
route inside 10.0.90.0 255.255.255.0 10.0.90.1 10
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
dynamic-access-policy-record DfltAccessPolicy
user-identity default-domain LOCAL
http server enable
http 192.168.1.0 255.255.255.0 management
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart warmstart
telnet timeout 5
ssh timeout 5
console timeout 0
dhcpd address 192.168.1.2-192.168.1.254 management
dhcpd enable management
dhcpd address 10.0.90.2-10.0.90.50 inside
dhcpd dns 180.40.20.188 10.0.80.10 interface inside
dhcpd lease 200000 interface inside
dhcpd domain abc.com interface inside
dhcpd enable inside
threat-detection basic-threat
threat-detection statistics access-list
no threat-detection statistics tcp-intercept
webvpn
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns preset_dns_map
parameters
message-length maximum client auto
message-length maximum 512
policy-map global_policy
class inspection_default
inspect dns preset_dns_map
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect esmtp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
inspect ip-options
inspect icmp
service-policy global_policy global
prompt hostname context
no call-home reporting anonymous
Cryptochecksum:7685047e28784f23fe499fe943ae8480
: end
any comment is highly appreciated, thanks!
all of a sudden... it just work but i have to enter it in sequence...
hostname asa
domain-name abc.com
Interface GigabitEthernet0/1
no shutdown
nameif dmz
security-level 50
ip address 10.0.80.1 255.255.255.0
Interface GigabitEthernet0/0
no shutdown
nameif outside
security-level 0
ip address 180.40.20.188 255.255.255.248
same-security-traffic permit inter-interface
same-security-traffic permit intra-interface
nat (dmz,outside) after-auto 1 source dynamic any interface
route dmz 10.0.80.0 255.255.255.0 10.0.80.1 10
route management 192.168.1.0 255.255.255.0 192.168.1.1 10
route outside 0.0.0.0 0.0.0.0 180.40.20.185 1
logging enable
!icmp deny any echo-reply outside
policy-map global_policy
class inspection_default
inspect icmp
exit
exit
Interface GigabitEthernet0/2
no shutdown
nameif inside
security-level 100
ip address 10.0.90.1 255.255.255.0
dhcpd address 10.0.90.2-10.0.90.50 inside
dhcpd enable inside
dhcpd dns 180.40.20.185 10.0.80.10 interface inside
dhcpd lease 200000 interface inside
dhcpd ping_timeout 50 interface inside
dhcpd domain abc.com interface inside
nat (inside,outside) after-auto 2 source dynamic any interface
weird!!!
Similar Messages
-
I sent a question re firefox 4 but was asked to register but now have had no reply
I updated to firefox 4 - what a mistake - I lost Australia only in my search - I also lost the line which had:- web, video, maps, pictures etc. I already asked these questions with no reply, why?
Firefox 4 uses a new build-in home page named <b>about:home</b> with a Google search bar on it.<br />
That about:home page only shows some snippets and has a button to restore the previous session if applicable.
If you want a home page with extras then set another page as the home page like www.google.com.au or www.google.com.au/firefox as used in Firefox 3 versions. -
I CANNOT ADD FILES TO EMAIL IN FIREFOX BUT I HAVE NO PROBLEMS WITH WINDOWS INTERNET EXPLORER. wHY?
I CANNOT ADD FILES TO EMAIL IN FIREFOX BUT I HAVE NO PROBLEMS WHEN USING WINDOWS INTERNET EXPLORER
Perform the suggestions mentioned in the following articles:
* Make sure that you are using the '''"Remember History"''' setting as described in this article -> [[Settings for privacy, browsing history and do-not-track]]
* [https://support.mozilla.com/en-US/kb/Template:clearCookiesCache Clear Cookies & Cache]
* [[How to clear the cache#w_clear-the-cache|Clear the Network Cache]]
Check and tell if its working. -
I can not get my Ipod 4 Gen to log into free WIFI hot spots. It shows that I am connected but I have no internet activity. I was in several hot spots last night and could not log in, other people were, but I could not. HELP!
- Did the other users who successfully connected have iDevices?
- Frequently you have to open Safari/a browser and agree to the terms and conditions of the wifi spot before yo can get to the internet. Some wifi spots use Flash or Java to log on which the iPod (and other iDevices) do not support)
- Have you tried resetting network settings: Settings:General>Reset>Reset Network Settings
- Does you Ipod successfully connect at home?. -
I want to use icloud but i have a lot of music on itunes that has been downloaded from elsewhere on the internet. Will i be able to access this on icloud if it has not be bought through itunes?
Not on iCloud itself - what you need is 'iTunes Match' which seeks to find versions in the Store of songs you already have, and failing that allows you to upload your own copies. This will cost you $24.99 per year; it does not count towards your 5GB free iCloud space. Limit 25,000 songs (purchased songs do not count towards this limit). You will need iTunes 10.5.1 or later on your Mac or PC and iOS 5.0.1 or later on your iPhone 3GS or later, iPod touch (3rd and 4th generation), or iPad.
Please see this page: http://www.apple.com/itunes/itunes-match/
Also note that some people have found that when using this facility with songs which contain strong language, iTunes Match is substituting a cleaned-up version. -
My iChat keeps saying disconnected but i have connection to the internet
Hi I was wondering what I should do since my iChat keeps saying I'm disconnected but i have connection to the internet. What should i do?
Hi,
Port 443 should be available all the time in most routing devices.
Other ports that iChat uses may not be open.
However iChat is much more sensitive to minor breaks in the Internet service/WiFi than say a Web Browser or Mail as iChat is Always On where as a Browser or mail are only "now and then" apps.
8:40 PM Monday; November 7, 2011
Please, if posting Logs, do not post any Log info after the line "Binary Images for iChat"
G4/1GhzDual MDD (Leopard 10.5.8)
MacBookPro 2Gb( 10.6.8)
Mac OS X (10.6.8),
"Limit the Logs to the Bits above Binary Images." No, Seriously -
how-do-i-use apple calaendar to-allow-my-staff-and-i-to-share-calendars-but-not-have-my-alarms-going-off-on- their-ihones
Really annoying can it be done.?
Searched everywhere for an answer surely other people have had this problem
Cheershttps://discussions.apple.com/message/19818985#19818985
-
How can I access my apps? They are all greyed out in itunes. I have tried restoring my iphone to factory settings but that didn't work. I have a feeling it may have something to with the restrictions settings on my phone restrictions are on) but it won't allow me to change the restrictions without putting in a passcode. I don't remember ever having a passcode and after several attempts have not been able to get the right code.
Also. on my phone, in settings, personal hotspot, iCloud and Twitter are greyed out. And, the App Store icon is missing from my screen as well.
Can anybody help me with this?
Thanksyep, unfortunately can't reset without the passcode either.
With regards to doing a restore, do you mean:
open itunes on my computer
click on my device on the left
go to the device summary
click restore
it then asks if i want to back up before i restore (to which i say no)
then it asks me if i'm sure I want to restore to factory settings and that all of me media and data will be erased and replaced with the newest version ( to which I say yes)
then it takes about 90 mins to do this but when I look at my phone, everything is exactly the same.
Am I missing something? Obviously I'm technologically challenged, but I HAVE to get to the bottom of this! -
My iPad does not have sound when on the Internet, including YouTube, but does have sound with iTunes and other apps. How can I correct this?
If you are sure that you have sound in other apps - and if you can still hear keyboard clicks and get notifications, then system sounds are not muted. Try this and see if it works.
Close all apps completely and reboot the iPad.
Go to the home screen first by tapping the home button. Double tap the home button and the recents tray will appear with all of your recent apps displayed at the bottom. Tap and hold down on any app icon until it begins to wiggle. Tap the minus sign in the upper left corner of the app that you want to close. Tap the home button or anywhere above the task bar.
Reboot the iPad by holding down on the sleep and home buttons at the same time for about 10-15 seconds until the Apple Logo appears - ignore the red slider if it appears on the screen - let go of the buttons. Let the iPad start up. -
I tried dowloading Skype yesterday and my Safari browser crashed. It gives the message "Safari quit while using the librooksbas.dylib plug-in. I trashed Skype but still have the browser problem. I also tried logging in under guest, and still
no Safari.Julie --
Backing up QuickTime's advice --
Unless your bank's website is insecure, you're fine. Go up to the Safari "Search" bar and type in Rapport. You'll be amazed. It may "work" on PCs, but definitely not Macs. And it's not needed for Macs. -
The image came up on my screen saying that I need to connect my iPod to iTunes, but I have a passcode, so it won't allow me to. And I want to try and turn it off, but my touch screen doesn't seem to be working either, so I can't even turn it off since you need to "slide to power off." HELP! I'm leaving on Thursday morning for six and a half weeks, and I absolutely need my iPod with me. I was just at the Apple store today for problems I was having with ANOTHER product, and I don't really want to drive all the way out to where my nearest store is (which is not very near) if I can figure this out at home. My iPod was working totally fine earlier today and last night, so I don't know what happened! Please, please, PLEASE HELP!
Now it's allowing me to reboot (hold down power button and home button and restart), but every time it just comes up to the same thing: the connect to iTunes page. Which is not possible. And I refuse to restore my iPod. PLEASE HELP.
-
Video no longer plays from sites on comedy central. Site says browser must be updated, but I have installed all updates and restarted the computer..twice.
If it is any consolation this started happening to me today. I am in Toronto. I am wondering if there is a copyright issue here. I have done nothing to solve it - mostly because I suspect this has nothing to do with my computer.
p.s. My speculation about copyright is not correct. Comedy Central plays fine with Google Chrome. Have not yet tested Firefox. -
Need a shortcut to "Allow pages to choose their own colors, instead of my selections above option preference" I know where it is and how to use it but I have to go through 7 mouse clicks to change it, then a few minutes later change it back. I also know the sequnce is alt t, alt o, alt c, alt a, then ok, ok. Got to be a way to make a one key short cut for this. I use a black background to reduce eye strain, but about 10% of the webpage I go to can't be send with black so I have to go into tools and hit 6 or 7 things to chnage it then after through with webpage have to do it all over at Not allow webpages to have own color. Very very cumbersome.
== This happened ==
A few times a week
== made that wayhttps://addons.mozilla.org/en-US/firefox/addon/toggledocumentcolors-198916/
The above addon will solve your problem.
Shortcut to toggle user color/page color :- Ctr+Shift+C -
I get a network error on iPad when I try to sign in but I have internet?
I get a network error on iPad when I try to sign in but I have internet?
What is the error message? Perhaps it's just a warning that you have no security enabled...
-
I have installed adobe reader onto my Mac but when I open up an adobe pdf it tells me that i need to accept the end user license agreement, quite, and then open up a new browser but i have never seen the end user license agreement. What should I do in order to accept the end user license agreement even though it never pops up when i install adobe reader?
Make sure Readr is closed. Go to the Applications form, look for the Adobe Reader icon, double click on it, and follow the lead. Restart Reader when finished.
Maybe you are looking for
-
My Review for MSI Big Bang Xpower & Overclocked
This will be the very 1st X58 big bang series of MSI and the 1st X58 MSI motherboard to have USB 3.0 and SATA 3 connections. Targets the enthusiast, hardcore gamers as well as overclockers. This board is already equipped with OC Genie buttons which w
-
Hi everyone, I was wondering if someone can help me. I recently got my first ever Ipod. It's the new Ipod Nano 7th Generation. I have tried to synchronise it with Itunes but it says "Connected, Eject before Disconnecting" but nothing happens. I h
-
Handling xml message of size more than 100mb in SAP PI 7.1
Dear Experts, Is it possible for PI to pick-up and process a XML message of size more than 100 MB in PI 7.1 EHP-1? If yes, can you please let me know how to handle it? Thank you.
-
Ask the Expert: ISE 1.2: Configuration and Deployment with Cisco expert Craig Hyps
Welcome to the Cisco Support Community Ask the Expert conversation. This is an opportunity to learn and ask questions about how to deploy and configure Cisco Identity Services Engine (ISE) Version 1.2 and to understand the features and enhanced troub
-
How to hide an Express in iTunes Multiple Speakers list
Hi, I'm running a wi-fi and Airtunes network in my Brooklyn Loft that I'm very happy with: 1 Airport Extreme creating the wi-fi network, and 4 different Airport Expresses, each connected to a separate stereo. It all works beautifully, and Airtunes ca