01-10-2025 07:01 AM
hi need some help with configuration of this firewall i already use the basic configuration and it doesn't let anything pass through . the network in the top is the outside and the one on the bottom should be the outside. I don't know if I have to change anything in the configuration of the firewall or maybe in the topology of the network. if you know how to do this please let me know.
Solved! Go to Solution.
01-10-2025 10:55 AM
I tried to setup the ASA as DHCP but it seems it only offer DHCP for the direct connected network, as we can see on the message below
"Address range subnet 192.168.1.10 or 192.168.1.100 is not the same as inside interface subnet 200.168.0.1"
Meaning, you can not provide DHCP for remote network which is the case for you scenario.
About the routes, I added two static route. One in the router4, connected to outide
ip route 0.0.0.0 0.0.0.0 200.168.0.1
and another one on the router5
ip route 0.0.0.0 0.0.0.0 201.168.1.1
And I redistributed both route on the RIP.
router rip
redistribute static
01-10-2025 07:09 AM
Hard to say anything without seeing the configuration. But, at least you need access-list and access-group applied to the outside interface.
You can attach yout PAcketTracert file here and I can take a look. Just zip it first.
01-10-2025 07:16 AM - edited 01-10-2025 07:34 AM
here is the file i would really appreciate if you could help me to know what i need to do. also i need to configure the firewall as a dhcp server if you can help me with that to i would really appreciate it.
01-10-2025 07:34 AM
I will. Just need a few hours as I am out of my computer now. Will let you know
Any special reason to use the firewall as DHCP server?
01-10-2025 09:24 AM
its basically for an online lab that i am doing that ask for it and i dont know if have to change the normal configuration in this case.
01-10-2025 09:52 AM
Your firewall seems to be fine. What I found missing was route on routers. I dont see the need for DHCP on firewall but if you reallly need to put DHCP server on firewall just tell me which network will be attended with Firewall as DHCP.
For now, you setup seems pretty decent to me.
01-10-2025 10:36 AM
well the networks that need the firewall to provide dhcp are the three in the bottom. so for the routers I need to add route to outside the network?
01-10-2025 10:55 AM
I tried to setup the ASA as DHCP but it seems it only offer DHCP for the direct connected network, as we can see on the message below
"Address range subnet 192.168.1.10 or 192.168.1.100 is not the same as inside interface subnet 200.168.0.1"
Meaning, you can not provide DHCP for remote network which is the case for you scenario.
About the routes, I added two static route. One in the router4, connected to outide
ip route 0.0.0.0 0.0.0.0 200.168.0.1
and another one on the router5
ip route 0.0.0.0 0.0.0.0 201.168.1.1
And I redistributed both route on the RIP.
router rip
redistribute static
01-10-2025 11:11 AM
ok now what was happening thanks you very much for your help.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide