Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Webcast-Catalyst9k
New Member

ASA 5505 - Internal Issue + NAT/PAT Portmap

I got my ASA 5505 setup last night. All of my internal boxes can reach the internet but for some reason I randomly cannot ping internal addresses. Also, whenever I or anyone else tries to reach my external IP on port 80 it says there is an ACL blocking it. I've added multiple Dynamic/Static nat policies, etc but to no avail. My ACL's are all permit any ip. Outside Incoming, Outside Outgoing, Inside Incoming and Outside Outgoing. All open ACLs. I am out of ideas.

2 REPLIES
Bronze

Re: ASA 5505 - Internal Issue + NAT/PAT Portmap

The issue is with the Access list configured on the inside of the router. This prevents your packet in entering the inside network.

Re: ASA 5505 - Internal Issue + NAT/PAT Portmap

Try the following ACL-

access-list outside_access permit tcp any any eq 80 log

access-group outside_access in interface outside

Remove all other ACL's. Turn on full logging to the buffer.

logging on

logging buffer debug

Try and access your web server. If it does not work, post your log, ACL statements, and NAT statements.

198
Views
0
Helpful
2
Replies
CreatePlease to create content