Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
309
Views
0
Helpful
2
Replies

same-security-traffic question

Go to solution
Phil Williamson
Level 1
Level 1

‎05-27-2008 08:44 AM - edited ‎03-09-2019 08:47 PM

ASA5505 config

ip address inside 10.1.1.254 255.255.255.0

nat (inside) 1 10.1.1.0 255.255.255.0

route inside 10.1.2.0 255.255.255.0 10.1.1.253

same-security-traffic permit intra-interface

When I source packets from 10.1.1.1 host I cannot reach 10.1.2.1 host

default-gateway on 10.1.1.1 is 10.1.1.254

If I "route add 10.1.2.0 mask 255.255.255.0 10.1.1.253" to 10.1.1.1 host I can then reach 10.1.2.1 host

What am I missing here? Everything else I need to do works.

Thx,

Phil

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
acomiskey
Level 10
Level 10

‎05-27-2008 09:47 AM

This should make it work.

global (inside) 1 interface

View solution in original post

0 Helpful
2 Replies 2

Go to solution
acomiskey
Level 10
Level 10

‎05-27-2008 09:47 AM

This should make it work.

global (inside) 1 interface

0 Helpful

Go to solution
Phil Williamson
Level 1
Level 1
In response to acomiskey

‎05-27-2008 09:57 AM

Adam - that did the trick!

It would have taken me some time to globalize the inside interface since this is my firs foray into hair-pinning.

Where does Cisco hide this little gem of information?

Thx,

Phil

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents