Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

same-security-traffic question

ASA5505 config

ip address inside 10.1.1.254 255.255.255.0

nat (inside) 1 10.1.1.0 255.255.255.0

route inside 10.1.2.0 255.255.255.0 10.1.1.253

same-security-traffic permit intra-interface

When I source packets from 10.1.1.1 host I cannot reach 10.1.2.1 host

default-gateway on 10.1.1.1 is 10.1.1.254

If I "route add 10.1.2.0 mask 255.255.255.0 10.1.1.253" to 10.1.1.1 host I can then reach 10.1.2.1 host

What am I missing here? Everything else I need to do works.

Thx,

Phil

1 ACCEPTED SOLUTION

Accepted Solutions
Green

Re: same-security-traffic question

This should make it work.

global (inside) 1 interface

2 REPLIES
Green

Re: same-security-traffic question

This should make it work.

global (inside) 1 interface

New Member

Re: same-security-traffic question

Adam - that did the trick!

It would have taken me some time to globalize the inside interface since this is my firs foray into hair-pinning.

Where does Cisco hide this little gem of information?

Thx,

Phil

100
Views
0
Helpful
2
Replies
CreatePlease to create content