Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
518
Views
0
Helpful
2
Replies

Concerning ASA 5505 and a strange behaviour with Network Objects

itnoc
Level 1
Level 1

‎07-27-2011 03:57 AM - edited ‎03-11-2019 02:04 PM

Hi,

I've just recieved a Cisco ASA 5505 to replace my old checkpoint firewall, and I have a problem (maybe it's not really a problem) with computer objects.

On my configuration, I have 4 subnets :

  • INTERNAL : 192.168.100.0/255.255.255.0
  • DMZ_1 : 193.XXX.XXX.1 - 127 / 255.255.255.128
  • DMZ_2 : 193.XXX.XXX.130 - 190 / 255.255.255.192
  • OUTSIDE : 193.XXX.XXX.240 - 254 / 255.255.255.240

My interfaces are set, everything seems to be normal, except when I try to create a Network Object, like a simple computer.

If I try to declare an host in any side, I must set 255.255.255.255 as subnet mask. Any other setting will fail with a pop-up. I made a screenshot attached to this post.

Is this a normal behaviour ? Do I do something wrong ?

Thanks for your help

Labels:
Preview file
35 KB
0 Helpful
2 Replies 2

Jon Marshall
Hall of Fame
Hall of Fame

‎07-27-2011 04:12 AM

removed because i was talking rubbish

Jon

0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame

‎07-27-2011 04:15 AM

Raphel

Ignore previous post.

What is happening is that you either specify a subnet or a host but you can't specify a host and then use the subnet mask for the subnet. You need to specify the subnet mask for the host ie. 255.255.255.255

So if you only want to specify a host then yes you need to use 255.255.255.255 and this is normal behaviour.

Jon

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card