ASA 5520 Firewall configuration Problem

Unanswered Question
Apr 19th, 2007
User Badges:

I have an ASA 5520 placed between two different networks and have to provide interconnectivity between them. The ASA is placed between two Layer 3 switches. I had configured ASA as below:

interface GigabitEthernet0/0 //(Outside)

nameif Network-2

security-level 0

ip address


interface GigabitEthernet0/1 //(Inside)

nameif Network-1

security-level 100

ip address

global (Network-2) 1 netmask

nat (Network-1) 1 0 0

route Network-2 1


1.) Say the two different networks are (network A) and (network B)

2.) is the next hop ip address of the layer3 switch at Network-B

I am able to ping all the systems in the two networks from the ASA.

I am unable to ping interface from Network-A and Network B. How to resolve the problem?? Please guide?.

All helpful posts will be rated

Thanks in Advance


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Jon Marshall Thu, 04/19/2007 - 04:06
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN


To allow network B to ping the outside interface try adding this to config

asa(config)# icmp permit outside

I don't believe that the ASA device allows you to ping an interface that is remote ie.

from the inside you can only ping the inside interface of the ASA,, you cannot ping the outside interface and vice-versa.




This Discussion