I'm using a site 2 site tunnel with NAT, i can ping from Lan2 (192.168.200.0/22) to Lan1 (192.168.1.0/24) except to the ASA. I would like to be able to ping to the ASA (192.168.1.250) aswell. How can this be achieved?
(I can't add a route-lookup: ERROR: Option route-lookup is only allowed for static identity case)
object network LAN-NAT-BDD
subnet 192.168.153.0 255.255.255.0
object network BDD-LAN
subnet 192.168.200.0 255.255.252.0
access-list outside_cryptomap_2 extended permit ip 192.168.153.0 255.255.255.0 192.168.200.0 255.255.252.0
While you were trying the above, did you make sure that the L2L VPN configurations and possible routing was fine for this single IP address of 192.168.1.250?
Is there a network 192.168.1.0/24 on the other site? That is essential information as if thats the case then some directly connected route on the other network might make it impossible to forward traffic to the IP address 192.168.1.250 through the L2L VPN.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...