Not sure if it is right section to ask this question but it is generic one that has to do with the ASA.
This is the problem. The ASA is connected to Shaw ISP via a cable modem. We are assigned 4 IPs addresses one of them is physically configured for the ASA outside interface. All other three IPs are statically translated by the ASA into the inside IPs. About once in week we loose connectivity from outside to those translated hosts. All traffic to IPs other than the IP physically assigned to the ASA stops flowing.
The call to the ISP ends up with a standard question and recommendation: connect a PC to the cable modem and try again. And it of course it works. Power cycling or resetting the modem helps as well and then we are safe for uncertain amount of time.
Moreover, the smart support guys from the ISP say it will only work if there's one-to-one mapping IP address to MAC address. How the hell it works all this time?
The ASA has proxy-arp configured on its outside interface and supposedly replies with the outside interface's MAC address to the sender of the packet destined to the secondary (or tertiary) IP address.
Is there any way to fix it once and for all on the ASA side and if not what I am supposed to say to ISP know-it-alls ?
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :