Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
257
Views
0
Helpful
1
Replies

ASA Outbound Access Problem

jrdebugssc
Level 1
Level 1

‎05-22-2009 09:54 PM - edited ‎03-11-2019 08:35 AM

good morning guys!

we recently procured an ASA-5510 app. went thru the ASDM Setup wizard with External and Internal config. public and private IP's already established. accdg to the ASA doc, internal clients should be immediately able to get outbound access (internet) by default. doesn't work.

my ISP told me that he can ping my external interface after providing him the MAC. he advised me that i should be able to at least ping up to the gateway.

directly connecting the external line to a PC is ok. browsing and everything.

setup is as follows:

Mgt 0/0 : MANAGEMENT 192.168.1.1 (default), DHCP enabled

Eth 0/0 : EXTERNAL StaticIP/30

Eth 0/1 : INTERNAL 200.200.200.0

PAT selected instead of NAT

Default security policies in effect.

please help.

thanks!

Labels:
0 Helpful
1 Reply 1

jeremyault
Level 1
Level 1

‎05-23-2009 08:11 AM

You need the following minimum config for interfaces, default route, and PAT. You do not need any ACLs applied for outbound traffic to work.

!

interface Ethernet0/0

nameif outside

security-level 0

ip address xx.xx.xx.xx 255.255.255.248

no shut

!

interface Ethernet0/1

nameif inside

security-level 100

ip address 200.200.200.1 255.255.255.0

no shut

!

route outside 0.0.0.0 0.0.0.0 xx.xx.xx.xx

!

global (outside) 1 interface

nat (inside) 1 200.200.200.0 255.255.255.0

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card