cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
518
Views
5
Helpful
4
Replies

ASA 5505 - Additional DHCP scope - Clients can't reach internet

RGISupport
Level 1
Level 1

Good afternoon,

 

Firewall:

Cisco ASA 5505

v 8.2(5)

Security Plus License

Switch (not important):

Netgear FS726TP

Firmware Version 2.0.1_09

The goal:

  • Add two additional VLAN's
  • Each with their own DHCP scopes
  • The VLAN's separate from each other
  • Clients able to get out to the internet

Current Result:

First - to omit the switch, I tried plugging a laptop into the ASA port that I configured and got the same result. 

On the client connected to the VLAN I configured, I get the proper IP address and can ping the default gateway for this interface - but cannot go out to the internet.

Let me know what else you need from me?

Thanks!

Andrew

 

 

 

2 Accepted Solutions

Accepted Solutions

Marvin Rhoads
Hall of Fame
Hall of Fame

Did you create a NAT rue for the new subnets?

Your running configuration would help.

View solution in original post

Try adding:

nat (vlan201) 1 0.0.0.0 0.0.0.0
nat (vlan250) 1 0.0.0.0 0.0.0.0

View solution in original post

4 Replies 4

Marvin Rhoads
Hall of Fame
Hall of Fame

Did you create a NAT rue for the new subnets?

Your running configuration would help.

I did not - I'm kind of new at configuring security appliances.  The config is attached.

Try adding:

nat (vlan201) 1 0.0.0.0 0.0.0.0
nat (vlan250) 1 0.0.0.0 0.0.0.0

That did it, thank you so much Marvin!

Andrew

Review Cisco Networking for a $25 gift card