cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
433
Views
0
Helpful
0
Replies

Cisco ASA 5545 context reachability from cisco ACS

SANDEEP HOODA
Level 1
Level 1

Hi ,

 

I want  to monitor asa context in cisco acs . i have cisco asa 5545 firewall with two context one MGMT & second

is DATA. both firewall and acs connected with CE switch. i have to make acs reachable from both contexts.

but when pinging asa Context BVI interface ip address from acs then firewall deny Ip address due to deny ip spoof

from 176.4.5.12 to 175.2.5.11 on interface outside.

 

we have two Svi interface in CE switch .

interface Vlan10
mac-address 0000.0000.0420
vrf forwarding DATA
ip address 171.4.1.10 255.255.255.248

 

interface Vlan 20

ip address 171.4.1.25 255.255.255.248

 

Both acs and asa connected with CE- switch .

ACS---CE-switch--ASA firewall.

 

CE-SW------PE-Router------RR router

 

 

Note---ASA Bvi is pinging fine from acs when we removed vrf from Svi int VL 10.

 

I request pls help me out or give any suggestion to resolve this issue.

 

 

 

 

 

 

 

                                          

 

 

           

0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: