E1000E portal application

Publication Date:  2013-07-30 Views:  303 Downloads:  0
Issue Description
Yemen customer use 1000E as the gateway of their portal system.But when they finish the config, they found portal does not work well.
They can enter the portal login page, but when they type the user/password, the page is always showing loading.Then finally login failed.
The customer change the firewall to a router, the portal can be easily login.
Alarm Information
login always loading and finally failed.
Handling Process
This portal application has a session of  the same source and destination ip, the firewall may need a policy to pass this session.
Root Cause
See the firewall session:
HRP_M<SDP-E1000E-1>display firewall session table destination inside 172.16.26.31
23:23:12  2013/07/09
Current Total Sessions : 12
  ssh  VPN:public --> public 172.27.27.152:58479-->172.16.26.31:22
  tcp  VPN:public --> public 109.74.43.123:52704-->82.114.182.237:6502[172.16.26.31:6502]
  tcp  VPN:public --> public 109.74.43.123:52591-->82.114.182.237:6502[172.16.26.31:6502]
  tcp  VPN:public --> public 109.74.43.123:52705-->82.114.182.237:6502[172.16.26.31:6502]
tcp  VPN:public --> public 82.114.182.237:31233-->82.114.182.237:5013[172.16.26.31:5013]
  tcp  VPN:public --> public 109.74.43.123:52703-->82.114.182.237:6502[172.16.26.31:6502]
  tcp  VPN:public --> public 109.74.43.123:52761-->82.114.182.237:6502[172.16.26.31:6502]
  tcp  VPN:public --> public 109.74.43.123:52802-->82.114.182.237:6502[172.16.26.31:6502]
Suggestions
When adding the new policy to allow the session of port 5013, problem solved.

END