Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
521
Views
0
Helpful
1
Replies

ASA Firewall

SathishkumarSaravanan0348
Level 1
Level 1

‎07-18-2019 11:04 PM

Hi All,

 

Please find the output of the interface in firewall:

 

FW# sh ip
System IP Addresses:
Interface Name IP address Subnet mask Method
GigabitEthernet0/0 outside 10.238.3.105 255.255.255.252 CONFIG
GigabitEthernet0/1 inside X.X.X.X 255.255.255.248 CONFIG
Management0/0 management X.X.X.X 255.255.255.0 CONFIG

 

In the above I need to know which device the outside interface is connected. I found that the inside is connected to the core  switch. 

 

Thanks.

 

 

 

 

Labels:
0 Helpful
1 Reply 1

Seb Rupik
VIP Alumni
VIP Alumni

‎07-18-2019 11:59 PM

Hi there,

The command sh arp , will display the ARP cache of the ASA sorted by interface. The outside interface is a /30 so I would expect to see only one other dynamic address. This will be your gateway. Take note of the MAC address.

 

It sounds like your ASA outside is connected to a switch so the Layer 2 connection is obvious but the Layer3 endpoint needs to be discovered. On the upstream switches issue the command:

sh mac-address | inc <MAC_ADDRESS_FROM_ASA_ARP_CACHE>

...this will show which interface the MAC address has been learnt on. Keeping hopping through your network using this command and you'll eventually find the gateway.

 

cheers,

Seb.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card