1 Reply Latest reply: Apr 17, 2012 7:32 AM by DelVonte RSS

    help in asa configure

    Mohamed

      hello for best fourms and all members

      i bought cisco asa 5540

      i have cisco router 2811 with static ip

      84.219.22.96/30

      and make nat to conected to internet pat nat

      and have

      84.219.22.80/29 for exchange server

       

      i want to confiure asa behind router

      i mean leave all configure on cisco router

      when  i make out side and inside lan all is ok

      ip ouside is 192.168.1.2/24 --------------- conected dirctly from router   this ip coming nat inside on router 192.168.1.1/24

      ip inside is 192.168.2.2/24

      conected to switch

      but all pc conected on inside interface of asa 5540 cannot access to internet

      and also cannot ping from pc ip on interface outside i permet icmp in servise poilcy and incpection icmp

      but i mean no conection not ping only

      can any one help me in this

        • 1. Re: help in asa configure
          DelVonte

          Hello Mohamed,

           

          Below you will find a few things to consider, if you have not done so already:

           

          The firewall automatically drops traffic going between interfaces with different security levels. You need to permit the type of traffic you want to flow from your Inside interface to your Outside.

           

          You will need to configure static routing to route traffic destined to the Internet, and destined for your internal network. 

           

          If your router has multiple interfaces, check the routing to make sure the traffic is flowing to and from the ASA correctly.

           

          Here is Cisco's configuration Guide:

           

          http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/config.html

           

          Regards,

           

          DelVonte