I have also tried switching the ACL's to allow everything thru for testing, using ip any any in place of what I actually want to get through, still with no results. In the above the block of text the lines regarding static NAT for outside and DMZ like static (outside,DMZ) 10.65.4.X 209.65.5.X originally was static (DMZ,outside) 209.65.5.X 10.65.4.X however I read that it was bad practice to map a higher sec level to a lower sec, so I changed it. Policy-map type inspect dns preset_dns_mapĬryptochecksum:bfa954ee3900016b01cca15cfcf36eec Snmp-server enable traps snmp authentication linkup linkdown coldstart Timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute Icmp unreachable rate-limit 1 burst-size 1 !Īccess-list outside extended permit tcp any any eq smtpĪccess-list outside extended permit udp any any eq domainĪccess-list outside extended permit tcp any any eq wwwĪccess-list outside extended permit icmp any anyĪccess-list DMZ extended permit tcp any any eq smtpĪccess-list DMZ extended permit tcp any any eq 50636Īccess-list DMZ extended permit tcp any any eq domainĪccess-list DMZ extended permit tcp any any eq wwwĪccess-list DMZ extended permit udp any any eq domainĪccess-list DMZ extended permit icmp any any However I have included the majority of my start/running config. I'll post the running config at the bottom but here are some of the details on the Tunnel GFIREWALL show crypto ikev1 sa IKEv1 SAs: Active SA: 1 Rekey SA: 0 (A tunnel will report 1 Active and 1 Rekey SA during rekey) Total IKE SA: 1 1 IKE Peer: 73.X.X. I think it's NAT (Not exactly my strong suit by far, never has been). I have tried tons of google searches but none of the solutions worked for me or involved use of the ASDM. This has all been done using the CLI/console and would be appreciated if the answers didn't involve use of the ASDM (I can't use ASDM for reasons). For whatever reason though I cannot get the inside and outside to accept pings from each other. But I can get the inside zone to ping with the DMZ and the Outside zone can ping with the DMZ. The inside zone won't ping with the outside zone and vice versa. I'm having some issue getting my cisco firewall (asa 5505) to ping between zones. Hi everyone and thanks in advance for all the help.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |