Team,
I am stuck up in one issue with CISCO ASA5515 where i checked everything related to rules/access-list but not able to get why firewall inside ip is not able to respond back to Scanner,
Just want to know is their some other extra config to be done on ASA so that it can communicate with qualys
Below is brief description of issue:
- Qualys Scanner in spinned up in Amazon and polls On-prem network over Site-Site IPSC towards On-Prem (built on firewall-ASA)
- Source IP of Scanner is 10.0.1.195 from which is tries to reach firewall inside IP (10.10.6.1) and which is not happening
- But same Source IP of Scanner is 10.0.1.195 is easily reaching and scanning Cisco switch on (10.10.0.1 and 10.10.6.2) which is directly connected to firewall on inside interface
IIT-XXXX# sh ver
Cisco Adaptive Security Appliance Software Version 9.12(4)18
SSP Operating System Version 2.6(1.225)
Device Manager Version 7.15(1)150
This platform has an ASA 5515 Security Plus license.