Re: Assigning multiple Public IP's to ASA 5512-X - Page 2

machine23 · ‎07-20-2019

Hi ,

I have been provided with 5 usable ip's x.x.x.x/29 from the ISP

I need to assign 5 public ips to my ASA using VLANS

How do i go about configuring the outside interface?

Currently WAN connection goes to int 0/0 and I have assigned that an IP address provided -81.209.115.101 I would like to assign the second IP on 0/0.200 another available ip -81.209.115.102

Inside network is not yet ready -- but assume there is one ( how would the NAT /ACL's be done in this situation)

Please can someone advice me on this configuration...

Thanks:)

machine23 · ‎07-25-2019

Hi , I have enabled ICMP inspection I might have deleted the config line beofre posting it here..

When I Run this with echo-reply or information-request - its fails with the NAT error

packet-tracer input GUEST icmp 192.168.80.1 0 1 8.161.119.238 xml

When done with just echo everything shows a tick on the packet tracer..

Marvin Rhoads · ‎07-25-2019

Echo reply would not work as a synthetic packet as is used by packet-tracer since there is no record of the echo request having been in through the device.

Again, I highly recommend to use tcp as a test through the firewall and in a way that matches real world traffic flows.

machine23 · ‎07-25-2019

I shall try tcp too , so other than that are my settings right ?

Marvin Rhoads · ‎07-25-2019

At a quick glance they appear correct otherwise.

machine23 · ‎07-29-2019

@Marvin Rhoads Thank you for you r continued help , I found out the issue and what fixed it was I needed to put the nat after auto source dynamic and now traffic is flowing :)