Communication between two inside subnets

Jean Paul Enerst · ‎12-21-2010

Hi all,

I have two subnets in the inside network(inside interface connected to a router with different sunets). Packet tracer shows that the packet go the default route which means there is no NAT for the subnet?? I tried to add the following NAT rule which didn't work.

Subnets are 192.168.1.0/24 and 10.169.10.0/24

static (inside,inside) 10.169.10.0 10.169.10.0 netmask 255.255.255.0 tcp 0 0 udp 0

There is a route on the ASA for each of the subnets pointed to the directly connected router!

Thanks,

Jean Paul

Jennifer Halim · ‎12-21-2010

If the subnets are actually attached to your internal router, then the traffic between the 2 subnets won't/shouldn't even reach the ASA.

Can you share a topology diagram of the subnets? interested to know what is the ASA inside interface, and how are the 2 internal subnets actually connected, whether one is directly connected to the ASA inside interface, and the other is connected to the router, or both are actually connected directly to the router interfaces? configuration will be different depending on how they are actually connected.

Please also advise what is the default gateway of each subnet.

Jean Paul Enerst · ‎12-21-2010

Hi Jenn,

ASA is connected to a switch which has different vlans and the router is connected to the same which.The router has a default route which send everyting to ASA. ASA and router share an IP subnets(directly connected), and the route is a route on the stick with many subinterface for different vlans.

Thanks,

Jean Paul

Jennifer Halim · ‎12-21-2010

Ok, so the router is performing the routing between VLANs. That means default gateway on each subnet is the router, hence if

each subnet needs to communicate with each other, the traffic will not be routed to the ASA. Only when those subnets need to access the Internet, the traffic will be routed towards the ASA.