Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
431
Views
0
Helpful
1
Replies

Please help me with configuration ASA 5540

kamil_abudov
Level 1
Level 1

‎09-05-2009 02:56 AM - edited ‎03-11-2019 09:12 AM

Dear friends my name is kamil and i am new in firewall configuration.please help me with configuration in asa access from dmz to inside interface and access from inside to dmz interface.here is attachment of my configuration.i want to ping from inside dmz host and from dmz inside host.please tell me where is my mistakes thanks in advance

Labels:
Preview file
6 KB
0 Helpful
1 Reply 1

Kureli Sankar
Cisco Employee
Cisco Employee

‎09-05-2009 06:51 PM

You are only allowing two hosts to ping each other. This will also deny all other traffic as the implicit deny any any will kick in.

Pls. remove these two lines below

access-group inside_access_in in interface inside

access-group dmz3_access_in in interface dmz3

and try the ping again. Make sure to source the ping from the inside interface or from a high security to a low security interface. You do have icmp inspection enabled and the replies should will be automatically allowed.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card