ASA5510 as default gateway problem

Unanswered Question
Jul 21st, 2009

Hi everybody!

I have an ASA5510 with an "inside" and "outside" topology.

All users at network are using the ASA to reach Internet.

Now I have a new router in the inside.

The problem is users cannot reach network at the new router.

I was looking for some configuration examples and I found "same-security-traffic permit intra-interface" command. It did not help me at all. Not sure if this command is available only for VPN connections.

I attached the LAN drawing.

Any idea?

Thank you everybody!

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)


You are trying to make the ASA act as a router for the network - when you have a perfectly good router to perform that function, my reccomendation is:-

1) Have all servers/desktops iin the point to the router as the default gateway.

2) Have a static default route in the router pointing to the ASA for internet traffic.

3) Have a route in the ASA for the network pointing to the IP of the router.

This will fix all your issues - and correct your topology.



This Discussion