04-15-2018 04:55 PM - edited 02-21-2020 07:38 AM
I have an ASA 5506-x running Software Version 9.9(1), and have configured basically 2 DMZs. DMZ1 has a web server and RDB configured and that is working find. I created another DMZ (DMZ2) and have a bare bones ESXi host setup on it. What I would like to do is be able to go from my computer with the web server (DMZ1) and control the ESXi host on DMZ2. I have tried making the security level of DMZ1 higher but does not work. I also have the following configured to no avail
same-security-traffic permit inter-interface
same-security-traffic permit intra-interface
I am a bit of a novice at this so any help would be appreciated. Thanks in advance
Solved! Go to Solution.
04-23-2018 02:46 AM
Yes the problem is solved. Thanks for your replies. Rookie mistake :)
04-15-2018 07:50 PM - edited 04-15-2018 07:51 PM
why would you want this scenario?
why not manage the DMZ hosts from Internal as its usually done? (which doesnt mean your scenario wouldnt work)
04-15-2018 10:16 PM
Please share your configuration so we can assist better.
If you cannot do that then try running packet-tracer on the ASA to see why the traffic isn't being allowed (assuming it's indeed an ASA problem).
04-23-2018 02:46 AM
Yes the problem is solved. Thanks for your replies. Rookie mistake :)
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide