05-11-2008 01:39 AM - edited 03-11-2019 05:43 AM
I tried to make ASA 5510 work as it mentioned in the Getting Started Guide that came with the ASA appliance. It is a basic DMZ scenario where I have a web server running on 10.30.30.30 and outside interface on ASA is 209.165.200.225. I followed all the steps mentioned in the guide. For step 1, I configured IP pools for Network Translation, For step 2, I configured Address Translations on Private Networks. For Step 3, I defined external identity of the web server that is 209.165.200.225. And for step 4 , I provided http access to the web server.
The problem is when I connect a pc on a outside network, I was not able to access the web server. I could ping web server (10.30.30.30) from ASA but not from a pc that is connected to outside interface. Is it a routing problem? Do I need to do something else?
05-11-2008 03:47 AM
What does the access-list on the outside intferface have in it?
05-11-2008 09:24 PM
Before I set up DMZ, I should be able to communicate from inside interface to outside interface and vice versa. My outside interface is on 209.165.200.0 and inside interface is 10.10.10.0 network.
Also from the documentation, I should see two vlan, one for inside and one for outside. But when I did
ciscoasa# sh vlan
I don't see any vlan.
Thanks.
05-14-2008 09:28 AM
You won't see any vlan information for the inside and outside unless you assign a vlan to these interfaces.
05-14-2008 10:28 AM
don't assign vlans unless they are plugged into dot1q ports. if you dont' know what this means, you probably shouldn't do anything.
05-14-2008 08:03 PM
Thanks, but what are the commands that will assign vlan to ASA ports and show vlan information. This is for future reference.
05-15-2008 07:26 AM
Before implementing VLANs, you need to understand the licenses required for this
interface gig x
vlan x
nameif outside
security-level 0
ip address xx.xx.xx.xx
no shut
interface gig y
vlan y
nameif inside
security-level 100
ip add yy.yy.yy.yy
no shut
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide