Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

DMZ Access (Strange Issue)

Hello,

We can´t reach DMZ servers from other DMZ servers. It's very strange.

If I make a ping from DMZ server to another, sometimes only recieve one ping, sometimes 4, sometimes 0.

How can I allow the traffic between DMZ servers??

(ASA 5520 Version 8.4)

Regards

Everyone's tags (4)
2 REPLIES

DMZ Access (Strange Issue)

Chris are we talking about servers that are on the same DMZ or two different DMZs?

You said that sometimes it works sometimes it doesnt, it sounds like a problem on the client side, have you checked for faulty NICs, cabling, or even duplicated IP addresses?

What happens on the ASA if you debug icmp trace while trying to ping?

Thanks,

Raga

New Member

DMZ Access (Strange Issue)

Chris,

If the source and destination are behind a Same DMZ interface and they are connected on a L2 switch, these packets should be routed b/w them from this Switch and packets should not go the the ASA.

Sometimes in cases of ASA doing proxy arp these packets can go to the ASA.

Can you take the output of arp -a from the Server when you can ping the other server fine and when you cannot.

Puneet

422
Views
0
Helpful
2
Replies