ASA5505 Programming - issue with outside

Unanswered Question
Oct 22nd, 2007
User Badges:

Hi Gurus,


I'm having a HELL of a time getting a new ASA 5505 online.


in the test environment I can ping my internal gateway, but I can't ping the external IP or the external next-hop gateway IP.


Not sure where I went wrong. Can someone clue me in? Run Config is attached.


caught this on a reload too:


..WARNING: static redireting all traffics at outside interface;

WARNING: all services terminating at outside interface are disabled.

*** Output from config line 105, "static (inside,outside) ..."



my outside IP is masked. Thanks.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
sundar.palaniappan Mon, 10/22/2007 - 16:48
User Badges:
  • Green, 3000 points or more

I see a couple of things missing in your configuration. Can you make the necessary changes and try.


1. Access list entry to permit icmp echo replies on the outside interface.


"access-list outside_access_in extended permit icmp echo-reply"


2. A default route on the PIX to forward all traffic to the external gateway on the outside.


"route outside 0.0.0.0 0.0.0.0 "


HTH


Sundar

Actions

This Discussion