I have a Cisco ASA5510 and a server that has Intel PROSet for Wired Connections loaded in an Adaptive Load Balancing mode. When i place this server behind the firewall, everything works fine. However, when I place a rule in the Access-List and a Static Mapping in, all inbound and outbound traffic stops. Any suggestions?
As i stated - the current machines, which only have 1 nic, work fine. when i attempt to pull a server that has dual - nics using Adaptive Load Balancing by Intel, and i add a mapping in (for RDP), the server is unable to browse and any traffic will not make it in.
ASA Version 7.0(7)
enable password #### encrypted
ip address Mas.Ked.0.5 255.255.255.192
ip address 192.168.100.1 255.255.255.0
no ip address
ip address 192.168.1.11 255.255.255.0
passwd PU6AEZI3KHII8gEh encrypted
ftp mode passive
clock timezone CST -6
clock summer-time CDT recurring
dns domain-lookup inside
object-group service 3389 tcp
port-object range 3389 3389
object-group service 25 tcp
port-object range smtp smtp
access-list OUTSIDE_ACCESS_IN extended permit tcp any host Mas.Ked.0.54 eq 3389
access-list OUTSIDE_ACCESS_IN extended permit tcp any host Mas.Ked.0.10 eq 3389
access-list OUTSIDE_ACCESS_IN extended permit tcp any host Mas.Ked.0.55 eq 3389
hmm..it seems routing issue here...check the "route print" output on your server..is the default gateway correct ?
1)inspect icmp in yoru policy map
2)Now turn on debug icmp trace on firewall and ping from the dual nic card server..do you see pings reply ? do you see these request and replies through the firewall in this "debug icmp trace" output ?
3)If you turn OFF one NIC card.I suspect this would work.... get me the logs if possible
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...