Hi Balaji,

Thanks for your help. Your solution solved this issue.

May I ask a further question?

In the same topology, the 192.168.244.2 is the real network gateway. But I cannot ping it successfully from ASAv.

ciscoasa(config)# ping 192.168.244.2
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.244.2, timeout is 2 seconds:
?????

Another issue is below, seems like 192.168.244.140 and .30 are from real network, but I don't know where they are.

Two DRs is also abnormal.

Outside#show ip ospf nei

Neighbor ID Pri State Dead Time Address Interface
202.200.200.254 1 FULL/DR 00:00:34 202.200.200.254 Ethernet0/0
192.168.244.140 1 FULL/DR 00:00:35 192.168.244.30 Ethernet0/1

Outside#show ip inter br
Interface IP-Address OK? Method Status Protocol
Ethernet0/0 202.200.200.1 YES TFTP up up
Ethernet0/1 192.168.244.5 YES TFTP up up
Ethernet0/2 unassigned YES TFTP administratively down down
Ethernet0/3 unassigned YES TFTP administratively down down
Loopback0 3.3.3.3 YES manual up up

192.168.244.2 is even not OSPF neighbor to ASAv.

What I want to implement is ping 8.8.8.8 (Google) from inside_2, but at the current stage, I cannot even ping the gateway. Any good idea on it? Thanks.

I do not have any visibility of the config, so OSPF redistribute connected networks to other Peers, so ASA seeing that routes.

Sending 5, 100-byte ICMP Echos to 192.168.244.2, timeout is 2 seconds:
?????

we post the config with more information. ( did your Outside Router do NAT ?)

Hi Balaji,

I attached the configuration files and the route.

NAT is not configured on Outside router. 192.168.244.2 is vmnet8 gateway. Vmnet8 is running in NAT mode.

Thanks for your help.

Hi Balaji,

Another obnormal is when I try to ping 192.168.244.2 from inside_2, seems like the packets are going through port dmz, not outside.

ICMP echo request from inside2:7.7.2.1 to dmz:192.168.244.2 ID=47 seq=1 len=72
ICMP echo request from inside2:7.7.2.1 to dmz:192.168.244.2 ID=47 seq=2 len=72
ICMP echo request from inside2:7.7.2.1 to dmz:192.168.244.2 ID=47 seq=3 len=72
ICMP echo request from inside2:7.7.2.1 to dmz:192.168.244.2 ID=47 seq=4 len=72

dmz ip add is 192.168.244.20/24, cannot figure out the reason.

192.168.244.2  - as per my understanding, this IP is your ISP Router behind IP. 

Lets do some tests here 

From Outside Router are you able to ping 8.8.8.8

By Nature ASA not allow Ping until you specific allow (not looked at the config - will go through later)

You want all these to work, On your Outside Router, you need to deploy NAT, 

You Lab ------(what ever IP range ) inside ---(Outside Router) - Outside interface 192.168.244.X/24 

Hi  Balaji,

Thanks for your help again.

Outside Router can ping 8.8.8.8 successfully, this function is already implemented by VMware virtual network adapter.

Outside#ping 8.8.8.8
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 8.8.8.8, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 13/13/14 ms

Below is Outside Router interfaces configuration.

Outside#show ip inter br
Interface IP-Address OK? Method Status Protocol
Ethernet0/0 202.200.200.1 YES TFTP up up               --> connected to ASAv port outside
Ethernet0/1 192.168.244.5 YES TFTP up up               --> connected to real network (ISP) gateway
Ethernet0/2 unassigned YES TFTP administratively down down
Ethernet0/3 unassigned YES TFTP administratively down down
Loopback0 3.3.3.3 YES TFTP up up

Also make a default static route pointed to the gateway

S* 0.0.0.0/0 [1/0] via 192.168.244.2

And from ASAv Policy-map, icmp is inspected

policy-map global_policy
class inspection_default

   inspect icmp

So is there any configuration I missed?

On outside Router try below config and test :

interface Ethernet0/0
no shutdown
ip address 202.200.200.1 255.255.255.0
ip nat inside
!
interface Ethernet0/1
no shutdown
ip address 192.168.244.5 255.255.255.0
ip nat outside
!
ip nat inside source list internet interface Ethernet0/1 overload
!
ip access-list standard internet
permit any

Hi Balaji,

Do I need to configure the ip nat outside? It's an incomplete command.

I configured other stuff as you pointed out.

Outside#show run | b nat
ip nat inside source list internet interface Ethernet0/1 overload

Outside#show run 
ip access-list standard internet

permit any

And the result is the same as before. ASAv cannot ping 192.168.244.2 neither 8.8.8.8

Do I need to configure the ip nat outside? It's an incomplete command.

Its under interface command not global command :

interface Ethernet0/1
no shutdown
ip address 192.168.244.5 255.255.255.0
ip nat outside
!

same for inside  :

interface Ethernet0/0
no shutdown
ip address 202.200.200.1 255.255.255.0
ip nat inside
!

Once this is done, 

Try ping  from router using inside interface

ping 8.8.8.8 source ethe 0/0 ( you should able to get reply success)

if not post router config again after changing.

Hi Balaji,

After configured, ping 8.8.8.8 source eth 0/0 is successful.

But ping 8.8.8.8 from ASAv is still unsuccessful. Thanks.