Unable to Access internet from the inside network.

Unanswered Question
Mar 18th, 2008
User Badges:

I'm unable to pass traffic from inside my to the internet. From within the FIrewall I can ping the outside interface on the Firewall as well as the internet. Is there something that I need to do on the Firewall to pass traffic past inside interface to the outside.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
alanajjar Tue, 03/18/2008 - 23:08
User Badges:


I think you need to define NAT from inside to outside, use these commands to do so:

nat (inside) 1 0 0

global (outside) 1 interface

the 0 0 in the nat command means any, you can also just put the internal network if you have only one inside network , example

nat (inside) 1


bericaleb Tue, 03/18/2008 - 23:35
User Badges:


I've added that in but it's still not working. I'm using an ASA 5510

ciscouser1234 Wed, 03/19/2008 - 02:24
User Badges:

Do you have any ACLs configured in firewall. can you paste the config by removing public IP's.

bericaleb Wed, 03/19/2008 - 02:47
User Badges:

Can't quiet get what you mean..can you elaborate, pls?

ciscouser1234 Wed, 03/19/2008 - 04:16
User Badges:

Can you paste your firewall configuration, so that we can have clear idea and give perfect reply.

derrickc Tue, 03/25/2008 - 10:57
User Badges:

Without seeing your configuration, I can only suggest the following:

1. Check you interface security levels and make sure you are going from a higher security level interface to a lower security level interface.

2. Check your routing. If you can ping the internet from the firewall, make sure your clients are getting routed to the firewall.

3. As mentioned in another reply, make sure you have NAT configured properly.

Hope this helps!


This Discussion