Solved: Seems switch2 does not had

mahesh18 · ‎11-28-2015

Hi Everyone,

Here is setup

Sw1---192.168.50.226-----------Firewall---------------192.168.50.230--Sw2

From Switch 1 i am trying to ping the interface IP of switch 2 which is directly connected to firewall but itdoes not work.

Firewall has no NAT config.

Here are logs from firewall

Nov 28 2015 03:35:19: %ASA-7-609001: Built local-host inside:192.168.50.226
Nov 28 2015 03:35:19: %ASA-7-609001: Built local-host outside:192.168.50.230
Nov 28 2015 03:35:19: %ASA-6-302020: Built outbound ICMP connection for faddr 192.168.50.230/0 gaddr 192.168.50.226/1893 laddr 192.168.50.226/1893
Nov 28 2015 03:35:25: %ASA-7-111009: User 'enable_15' executed cmd: show logging
Nov 28 2015 03:35:26: %ASA-6-302021: Teardown ICMP connection for faddr 192.168.50.230/0 gaddr 192.168.50.226/1893 laddr 192.168.50.226/1893

Regards

MAhesh

Marvin Rhoads · ‎11-28-2015

Mahesh,

Does switch 2 have a default gateway (or default or static route if it's a L3 switch) entry pointing back to the ASA outside interface?

View solution in original post

Marvin Rhoads · ‎11-28-2015

Mahesh,

Does switch 2 have a default gateway (or default or static route if it's a L3 switch) entry pointing back to the ASA outside interface?

mahesh18 · ‎11-28-2015

Seems switch2 does not had route back to ASA outside interface IP.

Regards

MAhesh

ping does not work with no nat config