Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
402
Views
0
Helpful
1
Replies

Can not ping through ASA

eigrpy
Level 4
Level 4

‎09-13-2017 09:17 PM - edited ‎02-21-2020 06:18 AM

Hello, Here is diagram: R1 ---- ASA(Outside) ---- R2

ASA can ping R1 and R2 respectively, and both routers can ping ASA. But R1 cannot ping R2. Vlan1 connect to R1 and Vlan2 connect to R2. Anyone can help find something missing: Below is relevant configuration:

 

5505:

interface Ethernet0/0
switchport access vlan 2
interface Ethernet0/1
interface Ethernet0/2

interface Vlan1
nameif inside
security-level 100
ip address 10.1.1.254 255.255.255.0
interface Vlan2
nameif outside
security-level 0
ip address 10.0.0.254 255.255.255.0

access-list Outside-in extended permit icmp any any

access-group Outside-in in interface outside

Both routers have static route pointing at ASA

Labels:
0 Helpful
1 Reply 1

Flavio Miranda
VIP
VIP

‎09-13-2017 11:20 PM - edited ‎09-14-2017 03:28 AM

Hello,

 Ping from higher security level to lower security level should work. The other way around may need acl.

 You are probably missing packet inspection. 

 

policy-map global_policy
   class inspection_default
   inspect icmp
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card