cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Welcome to Cisco Firewalls Community


596
Views
5
Helpful
19
Replies
Beginner

Re: Assigning multiple Public IP's to ASA 5512-X

Hi , I have enabled ICMP inspection I might have deleted the config line beofre posting it here.. 

When I Run this with echo-reply or information-request - its fails with the NAT error

packet-tracer input GUEST icmp 192.168.80.1 0 1 8.161.119.238 xml

 When done with just echo everything shows a tick on the packet tracer..

Highlighted
Hall of Fame Master

Re: Assigning multiple Public IP's to ASA 5512-X

Echo reply would not work as a synthetic packet as is used by packet-tracer since there is no record of the echo request having been in through the device.

Again, I highly recommend to use tcp as a test through the firewall and in a way that matches real world traffic flows.

Beginner

Re: Assigning multiple Public IP's to ASA 5512-X

I shall try tcp too , so other than that are my settings right ?
Hall of Fame Master

Re: Assigning multiple Public IP's to ASA 5512-X

At a quick glance they appear correct otherwise.

Beginner

Re: Assigning multiple Public IP's to ASA 5512-X

@Marvin Rhoads  Thank you for you r continued help , I found out the issue and  what fixed it was I needed to put the nat after auto source dynamic and now traffic is flowing :)