Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
191
Views
0
Helpful
1
Replies

ASA in transparent mode

cisco8887
Level 2
Level 2

‎09-21-2015 12:03 AM - edited ‎03-11-2019 11:37 PM

Hi All,

 

I have configured an ASA in transparent mode however I am experiencing some issues as follow:

 

I have an inside and outside interface on the asa which is passing traffic from the same subnet of 192.168.0.0/24.

Host is 192.168.0.11 and gw is 192.168.0.1 which is a router.

 

The asa has inside interface on host side and outside interface on router side.

 

when i issue a ping from host to gw it doesn't work . I then enable icmp inspection on the global interface and it starts to work.

Now I need the asa to pass dhcp traffic between inside and outside as a router on outside is dhcp server.

 

I create an acl and add that single entry. I know acl have deny all at the end and as soon as I apply the acl all traffic stops.

 

on routed mode if you apply an acl, the mpf still opens a whole in the acl as long as the traffic is inspected however this is not the case in transparent and as soon as you apply it you need to either have a detailed permit statements or permit any at the end .

 

in another way acl disables the mpf and inspection. is this correct ?

 

thanks

Labels:
0 Helpful
1 Reply 1

cisco8887
Level 2
Level 2

‎09-23-2015 12:31 AM

anyone :)?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card