hi. I swapped out a pix 506e for an ASA, but built it from scratch instead of transferring the config. For some reason traffic wont seem to pass in or out of it, and I cant seem to figure it out. I attached the config.
I added a gateway of last resort to no avail, added a 'permit any any' on the inside interfaces for ip and tcp as a test, still nothing. I thought maybe I wasnt passing dns requests... Im stuck, so any tips will likely help :)
For what its worth, it seems I can ping thoughts out in the internet by addr but not by dns name, yet the dns servers in my dhcp pool are correct.
Hi ... are you able to telnet to the inside interface of the ASA from an Internal device ..? .. if you can then make sure the default gateway for you inside hosts is pointing to the ASA's inside address. The below should give you access to Internet for any host on the 10.0.0.0 /24 range but you need to specify a DNS server for them .. you mihgt also need to type clear xlate after the below commands
nat (inside) 1 access-list Permit_All
global (outside) 1 interface
access-list Permit_All permit ip 10.0.0.0 255.255.255 any
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :