topic ASA 5520 Firewall configuration Problem in Network Security https://community.cisco.com/t5/network-security/asa-5520-firewall-configuration-problem/m-p/764649#M1006807 <P>I have an ASA 5520 placed between two different networks and have to provide interconnectivity between them. The ASA is placed between two Layer 3 switches. I had configured ASA as below:</P><P></P><P></P><P>interface GigabitEthernet0/0 //(Outside)</P><P>nameif Network-2 </P><P>security-level 0</P><P>ip address 10.66.88.100 255.255.255.0</P><P>!</P><P>interface GigabitEthernet0/1 //(Inside)</P><P>nameif Network-1</P><P>security-level 100</P><P>ip address 10.68.1.7 255.255.255.0</P><P></P><P>global (Network-2) 1 10.66.0.0 netmask 255.255.0.0</P><P>nat (Network-1) 1 10.68.1.0 255.255.255.0 0 0</P><P></P><P>route Network-2 10.66.1.0 255.255.255.0 10.66.88.200 1</P><P></P><P>Note: </P><P>1.) Say the two different networks are 10.68.1.0 (network A) and 10.66.1.0 (network B)</P><P>2.) 10.66.88.200 is the next hop ip address of the layer3 switch at Network-B</P><P></P><P>I am able to ping all the systems in the two networks from the ASA.</P><P></P><P>I am unable to ping interface 10.66.88.100 from Network-A and Network B. How to resolve the problem?? Please guide?.</P><P></P><P>All helpful posts will be rated</P><P></P><P>Thanks in Advance</P><P>Sridhar</P><P></P> Mon, 11 Mar 2019 10:01:51 GMT sridharpoola 2019-03-11T10:01:51Z ASA 5520 Firewall configuration Problem https://community.cisco.com/t5/network-security/asa-5520-firewall-configuration-problem/m-p/764649#M1006807 <P>I have an ASA 5520 placed between two different networks and have to provide interconnectivity between them. The ASA is placed between two Layer 3 switches. I had configured ASA as below:</P><P></P><P></P><P>interface GigabitEthernet0/0 //(Outside)</P><P>nameif Network-2 </P><P>security-level 0</P><P>ip address 10.66.88.100 255.255.255.0</P><P>!</P><P>interface GigabitEthernet0/1 //(Inside)</P><P>nameif Network-1</P><P>security-level 100</P><P>ip address 10.68.1.7 255.255.255.0</P><P></P><P>global (Network-2) 1 10.66.0.0 netmask 255.255.0.0</P><P>nat (Network-1) 1 10.68.1.0 255.255.255.0 0 0</P><P></P><P>route Network-2 10.66.1.0 255.255.255.0 10.66.88.200 1</P><P></P><P>Note: </P><P>1.) Say the two different networks are 10.68.1.0 (network A) and 10.66.1.0 (network B)</P><P>2.) 10.66.88.200 is the next hop ip address of the layer3 switch at Network-B</P><P></P><P>I am able to ping all the systems in the two networks from the ASA.</P><P></P><P>I am unable to ping interface 10.66.88.100 from Network-A and Network B. How to resolve the problem?? Please guide?.</P><P></P><P>All helpful posts will be rated</P><P></P><P>Thanks in Advance</P><P>Sridhar</P><P></P> Mon, 11 Mar 2019 10:01:51 GMT https://community.cisco.com/t5/network-security/asa-5520-firewall-configuration-problem/m-p/764649#M1006807 sridharpoola 2019-03-11T10:01:51Z Re: ASA 5520 Firewall configuration Problem https://community.cisco.com/t5/network-security/asa-5520-firewall-configuration-problem/m-p/764650#M1006809 <HTML><HEAD></HEAD><BODY><P>Hi </P><P></P><P>To allow network B to ping the outside interface try adding this to config </P><P></P><P>asa(config)# icmp permit 10.66.1.0 255.255.255.0 outside </P><P></P><P>I don't believe that the ASA device allows you to ping an interface that is remote ie. </P><P></P><P>from the inside you can only ping the inside interface of the ASA,, you cannot ping the outside interface and vice-versa. </P><P></P><P>HTH </P><P></P><P>Jon</P></BODY></HTML> Thu, 19 Apr 2007 11:06:50 GMT https://community.cisco.com/t5/network-security/asa-5520-firewall-configuration-problem/m-p/764650#M1006809 Jon Marshall 2007-04-19T11:06:50Z