I got one interface with lower security and I have permited it to access and interface with highersecurity
When I from the lower interface tries to access the higher one it works to somehosts all the time but some not. To make it work you can send an ping to one host wich are connected to the interface with lower security from the one with higher security and it works for an while!
i ever encountered this problem....because i am using the public the public ip address for the inside network....and then i didn't use the static translation. so what happened then...sometimes the outside network can not ping the inside servers..so i have to generate a traffic from inside to outside on the servers....then it's reachable from outside...why was it reachable from outside ? it think because there is an active connection for sometime then after the connection was timeout...so to solve this problem it did a static translation using the same ip address say static (inside, outside) 18.104.22.168 22.214.171.124
if i am mistaken...then the problem is solved...perhaps you can try the same way...
I have written an example below which may be of help to you .............
If you use private addressing on your LAN, and you want to permit access from a lower security interface to a higher security interface, for example the DMZ, you need to have a static entry like this one:
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :