UC500.com

Hi

I have a uc 500.
I can browse the web fine except for some sites such as microsoft.com

Here is the config can anyone see an issue

version 12.4
parser config cache interface
parser config interface
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
service internal
service compress-config
!
hostname xxxxxxxxxxxxxx
!
boot-start-marker
boot-end-marker
!
logging buffered 4096
no logging console
enable secret xxxxxxxxxxxxxxxxxxxx
!
aaa new-model
!
!
aaa authentication login default local
aaa authentication login sdm_vpn_xauth_ml_1 local
aaa authorization exec default local
aaa authorization network sdm_vpn_group_ml_1 local
!
!
aaa session-id common
clock timezone GMT 0
clock summer-time GMT recurring last Sun Mar 1:00 last Sun Oct 2:00
network-clock-participate wic 1
!
crypto pki trustpoint TP-self-signed-497568825
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-497568825
revocation-check none
rsakeypair TP-self-signed-497568825
!
!
!
dot11 ssid XXXXX
vlan 1
authentication open
guest-mode
!
ip cef
!
!
ip dhcp relay information trust-all
no ip dhcp use vrf connected
ip dhcp excluded-address 10.1.1.1 10.1.1.10
ip dhcp excluded-address 192.168.10.1 192.168.10.10
!
ip dhcp pool phone
network 10.1.1.0 255.255.255.0
default-router 10.1.1.1
option 150 ip 10.1.1.1
!
!
ip name-server 89.184.44.3
ip name-server 89.184.44.4
ip name-server 192.168.10.10
ip inspect log drop-pkt
ip inspect name SDM_LOW cuseeme
ip inspect name SDM_LOW dns
ip inspect name SDM_LOW ftp
ip inspect name SDM_LOW h323
ip inspect name SDM_LOW https
ip inspect name SDM_LOW icmp
ip inspect name SDM_LOW imap
ip inspect name SDM_LOW pop3
ip inspect name SDM_LOW netshow
ip inspect name SDM_LOW rcmd
ip inspect name SDM_LOW realaudio
ip inspect name SDM_LOW rtsp
ip inspect name SDM_LOW esmtp
ip inspect name SDM_LOW sqlnet
ip inspect name SDM_LOW streamworks
ip inspect name SDM_LOW tftp
ip inspect name SDM_LOW tcp
ip inspect name SDM_LOW udp
ip inspect name SDM_LOW vdolive
!
!
stcapp ccm-group 1
stcapp
!
stcapp feature access-code
!
multilink bundle-name authenticated
vpdn enable
!
isdn switch-type basic-net3
!
!
voice call send-alert
voice rtp send-recv
!
voice service voip
allow-connections h323 to h323
allow-connections h323 to sip
allow-connections sip to h323
allow-connections sip to sip
supplementary-service h450.12
sip
no update-callerid
!
!
voice class codec 1
codec preference 1 g711ulaw
codec preference 2 g729r8
!
!
!
!
!
!
!
!
!
!
voice register global
max-dn 88
max-pool 22
!
!
voice translation-rule 8
rule 1 /0180/ /180/
rule 2 /0181/ /181/
rule 3 /0182/ /182/
rule 4 /0183/ /183/
rule 5 /0184/ /184/
rule 6 /0185/ /185/
rule 7 /0186/ /186/
rule 8 /0187/ /187/
rule 9 /0188/ /188/
rule 10 /0189/ /189/
!
voice translation-rule 9
rule 1 /0190/ /190/
rule 2 /0191/ /191/
rule 3 /0192/ /192/
rule 4 /0193/ /193/
rule 5 /0194/ /194/
rule 6 /0195/ /195/
rule 7 /0196/ /196/
rule 8 /0197/ /197/
rule 9 /0198/ /198/
rule 10 /0199/ /199/
!
voice translation-rule 1111
rule 15 /.*/ /6490186/
!
voice translation-rule 1112
rule 1 /^9/ //
!
voice translation-rule 2000
rule 1 /6490185/ /185/
!
voice translation-rule 2001
rule 1 /6490186/ /186/
!
voice translation-rule 2222
!
!
voice translation-profile AA_Profile
translate called 2001
!
voice translation-profile CALLER_ID_TRANSLATION_PROFILE
translate calling 1111
!
voice translation-profile CallBlocking
translate called 2222
!
voice translation-profile Ecom_Called_8
translate called 8
!
voice translation-profile Ecom_Called_9
translate called 9
!
voice translation-profile OUTGOING_TRANSLATION_PROFILE
translate calling 1111
translate called 1112
!
voice translation-profile VM_Profile
translate called 2000
!
!
voice-card 0
no dspfarm
!
!
!
username xxxxxx privilege 15 secret xxxxxxx.
username xxxxxx privilege 15 secret xxxxxxxxx
archive
log config
logging enable
logging size 600
hidekeys
!
!
ip tftp source-interface Loopback0
bridge irb
!
!
!
interface Loopback0
description $FW_INSIDE$
ip address 10.1.10.2 255.255.255.252
ip access-group 101 in
ip nat inside
ip virtual-reassembly
!
interface FastEthernet0/0
description $ETH-WAN$
no ip address
ip virtual-reassembly
duplex auto
speed auto
pppoe enable group global
pppoe-client dial-pool-number 1
!
interface Integrated-Service-Engine0/0
description cue is initialized with default IMAP group
ip unnumbered Loopback0
ip nat inside
ip virtual-reassembly
service-module ip address 10.1.10.1 255.255.255.252
service-module ip default-gateway 10.1.10.2
!
interface FastEthernet0/1/0
switchport voice vlan 100
macro description cisco-phone
spanning-tree portfast
!
interface FastEthernet0/1/1
switchport voice vlan 100
macro description cisco-phone
spanning-tree portfast
!
interface FastEthernet0/1/2
switchport voice vlan 100
macro description cisco-phone
spanning-tree portfast
!
interface FastEthernet0/1/3
switchport voice vlan 100
macro description cisco-phone
spanning-tree portfast
!
interface FastEthernet0/1/4
switchport voice vlan 100
macro description cisco-phone
spanning-tree portfast
!
interface FastEthernet0/1/5
switchport voice vlan 100
macro description cisco-phone
spanning-tree portfast
!
interface FastEthernet0/1/6
switchport voice vlan 100
macro description cisco-phone
spanning-tree portfast
!
interface FastEthernet0/1/7
switchport voice vlan 100
macro description cisco-phone
spanning-tree portfast
!
interface FastEthernet0/1/8
switchport mode trunk
macro description cisco-switch
!
interface BRI0/1/0
no ip address
isdn switch-type basic-net3
isdn point-to-point-setup
isdn incoming-voice voice
isdn sending-complete
!
interface BRI0/1/1
no ip address
isdn switch-type basic-net3
isdn point-to-point-setup
isdn incoming-voice voice
isdn sending-complete
!
interface Dot11Radio0/5/0
no ip address
!
encryption vlan 1 key 1 size 128bit 7 1xxxxxxxxxxxxx transmit-key
encryption vlan 1 mode wep mandatory
!
ssid xxxxxxxxxxxxxx
!
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
station-role root
!
interface Dot11Radio0/5/0.1
encapsulation dot1Q 1 native
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
!
interface Vlan1
no ip address
bridge-group 1
bridge-group 1 spanning-disabled
!
interface Vlan100
no ip address
bridge-group 100
bridge-group 100 spanning-disabled
!
interface Dialer0
description $FW_OUTSIDE$
ip address negotiated
ip access-group 104 in
ip mtu 1452
ip nat outside
ip inspect SDM_LOW out
ip virtual-reassembly
encapsulation ppp
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication chap pap callin
ppp chap hostname xxxxxxxxxx
ppp chap password 7 xxxxxxxxxx
ppp pap sent-username xxxxxxxx password 7 xxxxxxxxx
ppp ipcp route default
ppp ipcp address accept
crypto map SDM_CMAP_1
!
interface BVI1
description $FW_INSIDE$
ip address 192.168.10.1 255.255.255.0
ip access-group 102 in
ip nat inside
ip virtual-reassembly
!
interface BVI100
description $FW_INSIDE$
ip address 10.1.1.1 255.255.255.0
ip access-group 103 in
ip nat inside
ip virtual-reassembly
!
ip local pool EZVPN_POOL_1 172.16.1.1 172.16.1.20
ip route 0.0.0.0 0.0.0.0 Dialer0
ip route 10.1.10.1 255.255.255.255 Integrated-Service-Engine0/0
!
ip http server
ip http authentication local
ip http secure-server
ip http path flash:
ip nat inside source static tcp 192.168.10.10 1723 interface Dialer0 1723
ip nat inside source static tcp 192.168.10.10 4125 interface Dialer0 4125
ip nat inside source static tcp 192.168.10.10 443 interface Dialer0 443
ip nat inside source route-map SDM_RMAP_1 interface Dialer0 overload
!
access-list 100 remark auto generated by SDM firewall configuration
access-list 100 remark SDM_ACL Category=1
access-list 100 deny ip 192.168.10.0 0.0.0.255 any
access-list 100 deny ip host 255.255.255.255 any
access-list 100 deny ip 127.0.0.0 0.255.255.255 any
access-list 100 permit ip any any
access-list 101 remark auto generated by SDM firewall configuration
access-list 101 remark SDM_ACL Category=1
access-list 101 permit tcp 10.1.1.0 0.0.0.255 eq 2000 any
access-list 101 permit udp 10.1.1.0 0.0.0.255 eq 2000 any
access-list 101 deny ip 10.1.1.0 0.0.0.255 any
access-list 101 deny ip 192.168.10.0 0.0.0.255 any
access-list 101 deny ip host 255.255.255.255 any
access-list 101 deny ip 127.0.0.0 0.255.255.255 any
access-list 101 permit ip any any
access-list 102 remark auto generated by SDM firewall configuration
access-list 102 remark SDM_ACL Category=1
access-list 102 deny ip 10.1.10.0 0.0.0.3 any
access-list 102 deny ip 10.1.1.0 0.0.0.255 any
access-list 102 deny ip host 255.255.255.255 any
access-list 102 deny ip 127.0.0.0 0.255.255.255 any
access-list 102 permit ip any any
access-list 103 remark auto generated by SDM firewall configuration
access-list 103 remark SDM_ACL Category=1
access-list 103 permit tcp 10.1.10.0 0.0.0.3 any eq 2000
access-list 103 permit udp 10.1.10.0 0.0.0.3 any eq 2000
access-list 103 deny ip 10.1.10.0 0.0.0.3 any
access-list 103 deny ip 192.168.10.0 0.0.0.255 any
access-list 103 deny ip host 255.255.255.255 any
access-list 103 deny ip 127.0.0.0 0.255.255.255 any
access-list 103 permit ip any any
access-list 104 remark auto generated by SDM firewall configuration
access-list 104 remark SDM_ACL Category=1
access-list 104 permit tcp any any eq 443
access-list 104 permit tcp any any eq 4125
access-list 104 permit tcp any any eq 1723
access-list 104 permit ip host 172.16.1.1 any
access-list 104 permit ip host 172.16.1.2 any
access-list 104 permit ip host 172.16.1.3 any
access-list 104 permit ip host 172.16.1.4 any
access-list 104 permit ip host 172.16.1.5 any
access-list 104 permit ip host 172.16.1.6 any
access-list 104 permit ip host 172.16.1.7 any
access-list 104 permit ip host 172.16.1.8 any
access-list 104 permit ip host 172.16.1.9 any
access-list 104 permit ip host 172.16.1.10 any
access-list 104 permit ip host 172.16.1.11 any
access-list 104 permit ip host 172.16.1.12 any
access-list 104 permit ip host 172.16.1.13 any
access-list 104 permit ip host 172.16.1.14 any
access-list 104 permit ip host 172.16.1.15 any
access-list 104 permit ip host 172.16.1.16 any
access-list 104 permit ip host 172.16.1.17 any
access-list 104 permit ip host 172.16.1.18 any
access-list 104 permit ip host 172.16.1.19 any
access-list 104 permit ip host 172.16.1.20 any
access-list 104 permit udp any any eq non500-isakmp
access-list 104 permit udp any any eq isakmp
access-list 104 permit esp any any
access-list 104 permit ahp any any
access-list 104 deny ip 10.1.10.0 0.0.0.3 any
access-list 104 deny ip 10.1.1.0 0.0.0.255 any
access-list 104 deny ip 192.168.10.0 0.0.0.255 any
access-list 104 permit icmp any any echo-reply
access-list 104 permit icmp any any time-exceeded
access-list 104 permit icmp any any unreachable
access-list 104 deny ip 10.0.0.0 0.255.255.255 any
access-list 104 deny ip 172.16.0.0 0.15.255.255 any
access-list 104 deny ip 192.168.0.0 0.0.255.255 any
access-list 104 deny ip 127.0.0.0 0.255.255.255 any
access-list 104 deny ip host 255.255.255.255 any
access-list 104 deny ip host 0.0.0.0 any
access-list 104 deny ip any any log
access-list 105 remark SDM_ACL Category=2
access-list 105 deny ip any host 172.16.1.1
access-list 105 deny ip any host 172.16.1.2
access-list 105 deny ip any host 172.16.1.3
access-list 105 deny ip any host 172.16.1.4
access-list 105 deny ip any host 172.16.1.5
access-list 105 deny ip any host 172.16.1.6
access-list 105 deny ip any host 172.16.1.7
access-list 105 deny ip any host 172.16.1.8
access-list 105 deny ip any host 172.16.1.9
access-list 105 deny ip any host 172.16.1.10
access-list 105 deny ip any host 172.16.1.11
access-list 105 deny ip any host 172.16.1.12
access-list 105 deny ip any host 172.16.1.13
access-list 105 deny ip any host 172.16.1.14
access-list 105 deny ip any host 172.16.1.15
access-list 105 deny ip any host 172.16.1.16
access-list 105 deny ip any host 172.16.1.17
access-list 105 deny ip any host 172.16.1.18
access-list 105 deny ip any host 172.16.1.19
access-list 105 deny ip any host 172.16.1.20
access-list 105 permit ip 10.1.10.0 0.0.0.3 any
access-list 105 permit ip 10.1.1.0 0.0.0.255 any
access-list 105 permit ip 192.168.10.0 0.0.0.255 any
dialer-list 1 protocol ip permit
snmp-server community public RO