cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1133
Views
0
Helpful
3
Replies

cisco asa communication between zones

Buenas tardes,

 

Alguien sabrá el comando  para que tengan comunicacion entre la interfaz G1/2 y la interfaz G1/4  en un cisco asa

 

GigabitEthernet1/2 192.168.100.250 

GigabitEthernet1/4 30.10.10.1 

 

Saludos.

3 Replies 3

Cristian Matei
VIP Alumni
VIP Alumni

Hi,

 

    Default traffic flow is allowed to not based on the security levels of the ASA; high-to-low allowed and low-to-high denied; you can change this by using ACL's and specifying which traffic is allowed in which direction. If you have the two interfaces with the same security-level, use "same-security-traffic permit inter-interface".

 

Regards,

Cristian Matei.

I have the same level of security in both interfaces, I already executed the command but it reamins the same.

 

!
interface GigabitEthernet1/4
description WIFI-USUARIOS
nameif wifi
security-level 100
ip address 30.10.10.1 255.255.255.0
ospf cost 10

interface GigabitEthernet1/2
nameif inside
security-level 100
ip address 192.168.100.250 255.255.255.0

ciscoasa# ping wifi 192.168.100.250
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.100.250, timeout is 2 seconds:
?????

 

 

 

Hi,

 

   You can't ping yourself, this is not inter-zone communication; have hosts in each zone, and see if they have connectivity.

 

Regards,

Cristian Matei.

Review Cisco Networking for a $25 gift card