Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA 5520 strange behavior

A one page description of the problem is attached with a sketch. The Firewall is not allowing access from a router that it should be by access rules. A sanitized version of the running cfg is also attached.

3 REPLIES
Silver

Re: ASA 5520 strange behavior

The following procedure shows the basic configuration required for this example. This procedure is similar to the configuration shown in " Basic Configuration Examples:

http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/products_configuration_guide_chapter09186a008045a77c.html

Cisco Employee

Re: ASA 5520 strange behavior

can you turn on your debug pings..usng debug icmp trace and then notice ICMP request hitting SMF01 from RT01 ?

I first want to make sure that the request is at least reaching the firewall...and then we can take it further...

New Member

Re: ASA 5520 strange behavior

I was able to see the ICMP build in the ASA SM-FW01 using ASDM live logging and then be torn down after the 2 sec timeout for ICMP.

BTW- The problem with the DB DMZ was not part of this - I caused it while trouble-shooting by redoing the routing and forgetting to replace the route to the SM-DBDMZ.

But I still can't ping the SM-FW01 from the EM-RT01 and it is mystifying me.

158
Views
0
Helpful
3
Replies
CreatePlease login to create content