Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
344
Views
0
Helpful
1
Replies

ASA on firepower

christianstp1
Level 1
Level 1

‎10-05-2016 07:31 PM - edited ‎03-12-2019 01:21 AM

Hello,

we have setup cisco firepower 4120 with an ASA image. the ASA is configured. when I am logged into the firewall i can ping an IP downstream on the inside interface and also ping upstream to the router. 

But, I cannot ping or pass traffic through the ASA. 

I have it down to one ACL 

access-list IN_INT_Inside extended permit ip any any log 

if I do a show log -

Oct 05 2016 22:29:31: %ASA-2-106007: Deny inbound UDP from 10..x.x.x/54221 to 10.x.x.x/53 due to DNS Query
Oct 05 2016 22:29:35: %ASA-3-106014: Deny inbound icmp src inside:10.x.x.x dst outside:216.x.x.x (type 8, code 0)
Oct 05 2016 22:29:35: %ASA-2-106007: Deny inbound UDP from 10.x.x.x/54221 to 10.x.x.x/53 due to DNS Query

Any info would be great.

Labels:
0 Helpful
1 Reply 1

christianstp1
Level 1
Level 1

‎10-06-2016 02:14 AM

issue resolved. had same security levels on outside and inside interfaces.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card