I configured 3 LAN interfaces on ASA. 2 interfaces are able to communicate to each other but at 3rd interface I am creating subinterfaces. also I can ping hosts on other VLANs from Cisco 2960. but host-host communication is not getting possible.Please suggest the solution for this
Don't forget you will need statics both ways eg.
vlan 5 = 192.168.5.0/24
vlan 17 = 192.168.6.0/24
static (VLAN5, VLAN 17) 192.168.5.0 192.168.5.0 netmask 255.255.255.0
static (VLAN17, VLAN5) 192.168.6.0 192.168.6.0 netmask 255.255.255.0
For communication between interfaces, you would need to configure static NAT to itself statements:
For example: If you are trying to communicate between INSIDE-VL5 and INSIDE-VL17 subnets:
static (INSIDE-VL5,INSIDE-VL17) 192.168.5.0 192.168.5.0 netmask 255.255.255.0
Then "clear xlate" after the above changes.
Same goes for communication to other subinterface.
Hope that helps.