I am new to ASA & I need some help to configure it (or say to solve my problem).
I am looking the answer for following qus. (Refer to diagram)
Q1) ASA 5510 is not able to ping directly connected router (R1) on int f0/0. But Router (R1) can ping to ASA (on int e0/1). I want my asa to ping router interface (on fa0/0.) How can I solve this problem?
Q2) As shown in pic there is some sort of DB server resides in internal network & client (office owner) don’t want to move DB Server into DMZ. Now the problem is VPN users can connect Application Server in DMZ Zone but they (VPN Users) are not able to connect DB Server in Internal network :wall: .
Router behind the ASA is configured as Zone Based firewall. but to check the connectivity, I removed the interfaces from Firewall Zones but still no success.
I am trying to emulate real networks in GNS. Configurations that I am running on Router & ASA are As below (& attached as well).
Thanks in Advance
ASA 5510 Configuration
: Written by enable_15 at 09:06:32.029 UTC Tue Sep 17 2013
ASA Version 8.4(2)
enable password 8Ry2YjIyt7RRXU24 encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
ip address 192.168.137.2 255.255.255.0
ip address 10.1.1.1 255.255.255.252
ip address 192.168.155.1 255.255.255.0
no ip address
no ip address
ip address 192.168.1.2 255.255.255.0
ftp mode passive
object network NAT-PAT
subnet 10.1.1.0 255.255.255.252
object network NETWORK_OBJ_10.1.50.0_25
subnet 10.1.50.0 255.255.255.128
object network NETWORK_OBJ_192.168.155.0_24
subnet 192.168.155.0 255.255.255.0
access-list LAB-VPN-TU1_splitTunnelAcl standard permit 192.168.155.0 255.255.255.0
pager lines 24
mtu outside 1500
mtu inside 1500
mtu dmz 1500
mtu managment 1500
ip local pool VPN-POOL 10.1.50.1-10.1.50.100 mask 255.255.255.0
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...