Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
687
Views
4
Helpful
6
Replies

Unable to Ping/Access from a Local Host to Public IP of another Host

Go to solution
thedao
Level 1
Level 1

‎05-17-2023 02:52 AM - edited ‎05-17-2023 02:53 AM

Hi everyone,

I'm using ASA Cisco 5520 with 2 interfaces: inside (172.16.10.x) and outside (119.202.193.80/28)
My Local Host IP is 172.16.10.200 can not Ping or Access to the Public IP (119.202.193.87) of Host 172.16.10.100, but can Ping/Access the Internet with no problem.
Clients outside the Internet can Ping/Access successfully to the Public IP (119.202.193.87) of Host 172.16.10.100 with no problem
Please show me how to do with ASDM ver 6.4, ASA ver 8.3(2) or this is can not be done by Cisco rule?
Thanks all

1 Accepted Solution

Accepted Solutions
6 Replies 6

Go to solution
Flavio Miranda
VIP
VIP

‎05-17-2023 03:49 AM

Hi

 What is this devices  (119.202.193.87) of Host 172.16.10.100 ?  Does it has route to return the traffic to 172.16.10.200

 If it has, then you need add rule on ASA

access-list xxx extended permit icmp 172.16.10.0 255.255.255.0 host 119.202.193.87

access-group xxx out interface OUTSIDE

access-group xxx out interface INSIDE

access-group xxx in interface INSIDE

Go to solution
thedao
Level 1
Level 1
In response to Flavio Miranda

‎05-17-2023 09:22 PM - edited ‎05-17-2023 10:17 PM

Hi friend,
Public IP (119.202.193.87) of Host 172.16.10.100 is a Web Server. I don't know what your mean 'Does it has route to return the traffic to 172.16.10.200? How I can do it? Is it NAT rule apply for both inside to outside and outside to inside? I attached the Routing image please take a look.
Thank Flavio Miranda a lot for helping me !!!Screen Shot 2023-05-15 at 14.09.57 copy.png

 
0 Helpful

Go to solution
Flavio Miranda
VIP
VIP
In response to thedao

‎05-18-2023 01:23 AM

Hi

"Does it has route to return the traffic to 172.16.10.200? How I can do it?"

As a server it need to have default gateway configured on it. No route is necessary

"Is it NAT rule apply for both inside to outside and outside to inside?"

It can be but not necessarillyI.  Usually we apply from inside to outside. You need outside to inside only if you want access your internal network from the internet.

"I attached the Routing image please take a look."

The attach did not load. Please add it again.

Go to solution
thedao
Level 1
Level 1
In response to MHM Cisco World

‎05-19-2023 02:22 AM

Thanks. This is WORK for me. But with the Ping command it shows as below, is it normal with (DIFFERENT ADDRESS!) alert? 

PING119.202.193.87 (119.202.193.87) 56(84) bytes of data.
64 bytes from172.16.10.100: icmp_seq=1 ttl=64 time=0.343 ms (DIFFERENT ADDRESS!)

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to thedao

‎05-19-2023 02:26 AM

it work but ping failed can you more elaborate.
thanks 
MHM

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card