I have FWSM in 6509 running the latest firware. It is inside of my network so when I refer to "outside" I do not mean the Internet I mean outside of the FWSM but still on my internal network. I have a different Internet firewall.
I can ping the management interface from outside addresses and I can also manage the firewall from "outside". I can ping it from the inside workstation and manage it.
My issue is inside workstations can not go further than the FWSM and "outside" systems can not access the workstation even though I have opened up the firewall a I have been troubleshooting. (Keep in mind again that it isnt open to the Internet just my internal network)
<FWSM MGMT IP 192.168.30.2>
<Outside - VLAN30- IP Address 192.168.30.1>
I thought with transparent I used the Outside VLAN IP of 192.168.30.1 as the gateway for my inside clients? I have also tried the MGMT IP and neither work.
ip address 192.168.30.1 255.255.255.0
no ip unreachables
no ip proxy-arp
VLAN 31 is a VLAN but not set as an interface
ip address 192.168.30.2 255.255.255.0
route outside 0.0.0.0 0.0.0.0 192.168.30.1 access-list outside extended permit tcp any any
access-list outside extended permit udp any any
access-group outside in interface outside
(I do realize that I have opened it up not a risk at the moment)
I got it working once I looked at the syslogs. (Duh)
I got it to work by NAT but I guess I didnt think with transparent you needed to define NAT rule. I thought it just didnt need it. I was also getting ACL denies on the inside interface so once I opened up the inside it worked which I didnt think I needed to do.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...