cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
385
Views
0
Helpful
1
Replies

ASA on firepower

christianstp1
Level 1
Level 1

Hello,

we have setup cisco firepower 4120 with an ASA image. the ASA is configured. when I am logged into the firewall i can ping an IP downstream on the inside interface and also ping upstream to the router. 

But, I cannot ping or pass traffic through the ASA. 

I have it down to one ACL 

access-list IN_INT_Inside extended permit ip any any log 

if I do a show log -

Oct 05 2016 22:29:31: %ASA-2-106007: Deny inbound UDP from 10..x.x.x/54221 to 10.x.x.x/53 due to DNS Query
Oct 05 2016 22:29:35: %ASA-3-106014: Deny inbound icmp src inside:10.x.x.x dst outside:216.x.x.x (type 8, code 0)
Oct 05 2016 22:29:35: %ASA-2-106007: Deny inbound UDP from 10.x.x.x/54221 to 10.x.x.x/53 due to DNS Query

Any info would be great.

1 Reply 1

christianstp1
Level 1
Level 1

issue resolved. had same security levels on outside and inside interfaces.

Review Cisco Networking for a $25 gift card