Hi, I need some help configuring a Cisco ASA5510 firewall. I have connected the ethernet0/0 interface to a D-Link DSL-504T router whose ip address is 192.168.1.1. The ethernet0/1 interface is connected to a 3Com OfficeConnect Dual Speed Switch 5 switch that provides connection to several hosts. At first, I wrote down a basic configuration in order to permit all traffic coming from the inside network and use the ping command, but the firewall drops every incoming packet from the LAN. When I ping the router there is no reply and I also can't surf on internet, but pings to the ethernet0/0 interface are replied. This is the whole list of commands I used:
interface ethernet 0/0
ip address 192.168.1.2 255.255.0.0
interface ethernet 0/1
ip address 10.0.0.1 255.255.255.0
route outside 0 0 192.168.1.1 1
dhcpd address 10.0.0.2-10.0.0.254 inside
dhcpd dns 126.96.36.199 188.8.131.52
dhcpd enable inside
access-list 100 extended permit icmp any any echo-reply
access-list 100 extended permit icmp any any time-exceed
access-list 100 extended permit icmp any any unreachable
access-group 100 in interface outside
nat (inside) 1 10.0.0.0 255.255.255.0
global (outside) 1 192.168.3.100-192.168.3.150
global (outside) 1 192.168.3.200
What's wrong with these settings? Did I forget any important detail? In case the configuration is wrong, could you please post here any other basical one?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...