Questions

Answer for:

Cisco Pix 506e firewall blocking Win07 from accessing a specific website?

Message 46 of 52

View entire thread
+
0 Votes
NetMan1958

First I want to make sure I understand the situation.
With PIX in the path:
Windows XP box can access a website over the Internet by typing "http://ip address of website"
Windows 7 box cannot access same website over the Internet by typing "http://ip address of website"

Without PIX in the path:
Both Win7 and Win XP boxes can access this website

If the above is correct, here is what I suggest trying:

On the PIX, run the following commands:
conf t
access-list inbound permit tcp any eq 80 any
access-list inbound permit tcp any eq 443 any
no fixup protocol http 80
exit

This has the effect of turning of http inspection while allowing responses from web servers through the outside interface. Now try accessing the website from Windows 7 and see if it makes a difference.

To return to the previous config run the following commands:
conf t
no access-list inbound permit tcp any eq 80 any
no access-list inbound permit tcp any eq 443 any
fixup protocol http 80
exit