cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
3531
Views
10
Helpful
6
Replies

FTD Firepower 2110 Version 6.6.1 not passing traffic

jdelgado
Level 1
Level 1

Hello,

 

I have Firepower 2110, which is not passing traffice from the Inside interface to the Outside interface. I have run the packet tracer tool and it states that traffic should be passing normally. I have a static route. I am new to Firepower, and I think the issue may be related to the security levels. but unsure. I have been using pinging as a test and I have been trying to get to webpages also.

 

Public IP is redacted. But below is the Show Route and Show Run Interfaces output. Also attached is diagram of the issue. Please any and all help would be appreciated.

 

Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2, V - VPN
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route, + - replicated route
SI - Static InterVRF
Gateway of last resort is *.*.28.1 to network 0.0.0.0

S* 0.0.0.0 0.0.0.0 [1/0] via (*).(*).28.1, Outside
C 10.20.50.0 255.255.255.0 is directly connected, Inside
L 10.20.50.1 255.255.255.255 is directly connected, Inside
C (*).(*).28.0 255.255.255.224 is directly connected, Outside
L (*).(*).28.11 255.255.255.255 is directly connected, Outside

 

interface Ethernet1/1
nameif Outside
cts manual
propagate sgt preserve-untag
policy static sgt disabled trusted
security-level 0
ip address (*).(*).28.11 255.255.255.224
!
interface Ethernet1/2
nameif Inside
cts manual
propagate sgt preserve-untag
policy static sgt disabled trusted
security-level 0
ip address 10.20.50.1 255.255.255.0

 

 

1 Accepted Solution

Accepted Solutions