Question : Cisco ASA, allowing Windows domain controller and exchange through two different dmz's

I got a big problem here... the windows server guy here cannot manage exchange addresses from the inside but he can from dmzx which is international.company.com. He also cannot run his recipeint update service from the inside but he can from the international dmz. I have added access from all dc's to all dc's and exchange servers and this has totally fixed everything. He still can't manage from the inside or add object from the recipient update service on the inside. He can just do it from international.
I dont see any hits bettwen the DC's or exchange servers. How can I make sure that the ASA isnt causing this? Need some help on this one, thanks!

Answer : Cisco ASA, allowing Windows domain controller and exchange through two different dmz's

Have you looked at the ASDM log while he is trying to do his tasks? Try that and see if it reports any denies or translation problems. That might give you a hint where to go next. If you still have issues please post a sanitized (passwords and public IPs masked out) complete ASA configuration.

Good Luck
Random Solutions  
 
programming4us programming4us