I have the following network as shown. I seem to have some problems configuring routes for the ASA 5510.
I need hosts on 188.8.131.52/24 network (HEADQUATER) to be able to ping the hosts on 184.108.40.206/24 (BRANCH). But hosts on the headquater network can only ping the outside interface of the ASA firewall (220.127.116.11). The hosts on HQ network are not able to ping the inside interface or the host on the branch network.
On the ASA try adding "inspect icmp" and see if that helps.
its not really a acl problem, i have allowed all incoming and outgoing IP traffic on both interfaces. Its more like routing problem
I have a route (to my HEADQUATER network) on my OUTSIDE interface. But i dont have this route on my INSIDE interface. Which is why the echo-reply packets cannot find a way back when i ping the inside interface.
But if i try adding a route to the inside interface....the asa says a route with the same gateway already exists
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...