Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

5505 Inside Interface To Another Switch

Hello,

I am connecting the inside interface to an upstream switch and therefore will need to assign a static IP address to the inside address as I did below:

#sho int ip brief

Vlan1                      123.123.123.123  YES manual up                    up

I will also use this to manage the ASA. I am having a problem with the network configuration of the inside interface as I can't ping the gateway and/or the in IP of the inside interface.

Do I need to add any routes?

or

Am I forgetting some other steps?

Thanks

2 ACCEPTED SOLUTIONS

Accepted Solutions

Re: 5505 Inside Interface To Another Switch

Do you have route to 123.123.123.123 from the management PC? Check if Vlan may be the issue(inter vlan communication in case of different vlan).

Also, ASA need to know how to get back to your management PC subnet (you need to add Static route or use IGP)

Thx

MS

Red

5505 Inside Interface To Another Switch

Yes that's correct, if the host is not in the same network as the ASA inside interface, then you would definitely need a route for the next hop through which that network is reachable.

Thanks,

Varun

Thanks, Varun Rao Security Team, Cisco TAC
3 REPLIES

Re: 5505 Inside Interface To Another Switch

Do you have route to 123.123.123.123 from the management PC? Check if Vlan may be the issue(inter vlan communication in case of different vlan).

Also, ASA need to know how to get back to your management PC subnet (you need to add Static route or use IGP)

Thx

MS

New Member

Re: 5505 Inside Interface To Another Switch

I think it's an ASA route issue. I have the following:

d*   0.0.0.0 0.0.0.0 [1/0] via xx.xx.xx.xx.1, outside

So I would need an inside static route to point to the GW correct?

How do I do that?

Thanks

Red

5505 Inside Interface To Another Switch

Yes that's correct, if the host is not in the same network as the ASA inside interface, then you would definitely need a route for the next hop through which that network is reachable.

Thanks,

Varun

Thanks, Varun Rao Security Team, Cisco TAC
317
Views
0
Helpful
3
Replies
CreatePlease login to create content