MC IP address: 10.0.80.20
CAS IP address: 10.0.80.30
Client IP address: 10.0.200.20
1) On MC when we try to add/integrate CAS device we're getting error: Unable to reach device
Took packet capture on CAS for MC IP address when trying to add CAS on MC.
Verifying pcap file taken on CAS we can see that MC is sending SYN packet to CAS on port 8082 but CAS is not replying back with SYN, ACK packet
2) From Client IP address 10.0.200.20 able to take CAS web-management console on port 8082 and CAS is replying back with SYN, ACK packet
access-list configured on CAS for web-management via CLI
To verify if access-list for CAS web-management is configured or not run the following command on CAS CLI (i.e. Standard/ Enable mode)
Following output shows that no access-list configured on CAS for web-management
If access list would have been configured on CAS for web-management then you'll get output similar to following which contains access-list entries
Here access-list doesn't contain MC IP address hence CAS was not replying back with SYN, ACK packet for request coming from MC IP address.
To resolve this issue append MC IP address to existing access-list configured on CAS for web-management using following command
Now MC will able to reach CAS successfully and CAS will reply back to MC with SYN, ACK packet as well.