One of our Customer currently running Juniper firewall and we tried to replace it with the ASA 5512 Firewal l Using attached configuration .every vpn , internet connections are working fine but after we connect it to the LAN side following issues came out
1) Some desktop machines are not assigning the ip address and dns address (DHCP server and Dns configure in the windows 2008 sever not in the ASA firewall)
2) Some desktop machines assign ip address ,DNS addresses and work fine without any issue
3) After some period of time some desktop machines unable to connect to internal servers
But after we install the juniper firewall over again LAN network work fine without above issues. we already checked the LAN network but couldt find any issues there. So please help us to overcome this issue , and please check the attached Juniper and Cisco ASA firewall configuration and also network Diagram
It appears like all your PCs and Server are in the same Vlan with subnet 192.168.120.x. Did you check the switch logs?
Also, Switch is L3 and routing configured on the same? On ASA, I do not see any dynamic routing configured. How it is learning about 192.168.120.x subnet. At this point it looks like internal issue than ASA related. Can you post Switch config? An changes to AD server?
Thank you very much for yoyr answer but firwall cannect to the unmanagable switch (AD and firewall and lan ) and no any changes to AD server.all lan network work fine with the Juniper firewall. can u please send me the dynamic routing that need to configured in the firewall
As per your advise we replace the existing unmanageable switch and install layer 2 Cisco switch . and also check the juniper firewall configuration but it s not seems to be acting as a DHCP server to lan network.there are no DHCP server configuration on it.and for the further troubleshooting we isolate the lan network from our firewall and check the connectivity at that time it work fine without any issue but after connecting the firewall in to the lan, it shows the same issues .specially deckstop machines that running windows 7 unable to assign even a ip address from the DHCP server, and cant reach printers and file servers within the lan network. so this case still in unresolved state and if possible please advice for further actions
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...