I'm having a strange issue on an asa (ver 9) where certain hosts on the inside can't connect to each other.
All internal hosts are on the same subnet connected to the "inside" interface, and 'same-security-traffic permit intra-interface' is enabled.
Both wireless and wired clients are able to reach the internet and ping the firewall (their def gw).
This is probably a wireless issue as it seems to be only devices connected to a wlc that the wired devices can't connect to and vice versa. But I just wanted to check if there was any firewall setting that would prevent connectivity?
I've attached a basic diagram of the topology and a pic showing the arp table of the firewall and a wireless client. You can see that I'm unable to ping fellow wireless client .8 from host .13. The firewall is able to ping both.
If anyone has any ideas or advice that would be greatly appreciated!
A quick test you could do, if your are able to have a short downtime on the wireless network, is to connect a PC to the port that connects to the wireless network on the ASA and then see if you can connect the wired hosts. If you are able to to then this issue is most likely within the wireless setup. If you are using ping to test and these are windows PCs then make sure to turn off the windows firewall during testing. If any other software firewall is installed on the machines make sure that they are turned off during testing.
Please remember to select a correct answer and rate helpful posts
Please remember to rate and select a correct answer
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...