ASA5505 Programming - issue with outside

Unanswered Question
Oct 22nd, 2007

Hi Gurus,

I'm having a HELL of a time getting a new ASA 5505 online.

in the test environment I can ping my internal gateway, but I can't ping the external IP or the external next-hop gateway IP.

Not sure where I went wrong. Can someone clue me in? Run Config is attached.

caught this on a reload too:

..WARNING: static redireting all traffics at outside interface;

WARNING: all services terminating at outside interface are disabled.

*** Output from config line 105, "static (inside,outside) ..."

my outside IP is masked. Thanks.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
sundar.palaniappan Mon, 10/22/2007 - 16:48

I see a couple of things missing in your configuration. Can you make the necessary changes and try.

1. Access list entry to permit icmp echo replies on the outside interface.

"access-list outside_access_in extended permit icmp echo-reply"

2. A default route on the PIX to forward all traffic to the external gateway on the outside.

"route outside 0.0.0.0 0.0.0.0 "

HTH

Sundar

Actions

This Discussion