Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
249
Views
0
Helpful
1
Replies

ASA inter vlan routing

galaga5656
Level 1
Level 1

‎02-26-2015 01:16 AM - edited ‎03-11-2019 10:33 PM

Hello

Question,  I have an ASA 5505 with one vlan. I have created a DHCP superscope on our Microsoft server 192.168.1.0 192.168.3.254

Clients get the right IP however Clients can not communicate between subnets they can ping out to 8.8.8.8 but not google.com 

192.168,3.5 can not communicate with anything on 192.168.1.x

No router between asa and clients all switches are cisco L2

Anyway to overcome this ?

Create vlan 2 with 192.168.3.0/24 on switches and asa ?

Labels:
0 Helpful
1 Reply 1

cpgsystems
Level 1
Level 1

‎02-27-2015 05:56 AM

if they can ping by IP but not by name, then the issue is DNS, not firewall. If the DNS translation request cannot get past the firewall, then it will fail. The fact that pinging by IP works shows that the ACL and NAT are setup correctly for ping at least. Now you just need to identify if the same areas are configured for dns resolution

RE: 192.168,3.5 can not communicate with anything on 192.168.1.x

This sounds like a netmask problem too. 255.255.252.0 yes? Your network actually has a bunch more IP's than you intended, I guess

Address:   192.168.1.0
Netmask:   255.255.252.0 = 22
Wildcard:  0.0.3.255
=>
Network:   192.168.0.0/22
Broadcast: 192.168.3.255        
HostMin:   192.168.0.1           
HostMax:   192.168.3.254         
Hosts/Net: 1022

Does everything have the correct netmask and gateway information? Can you post an IPconfig /all from a .3 workstation AND post the ASA's config please?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card