06-07-2014 01:10 PM - edited 03-11-2019 09:18 PM
Hi Everyone,
Below is setup
PC---inside----ASA1----DMZ----SW1----DMZ----ASA2
IP of PC 10.0.0.5
ASA2 config
interface Ethernet0/0
nameif vlan4
security-level 45
ip address 192.168.1.173 255.255.255.0
Also on ASA2 i have config no nat control.
ASA1 config
interface Vlan4
nameif DMZ
security-level 45
ip address 192.168.1.171 255.255.255.0
When i ping from PC to ASA2 IP 192.168.1.173
logs from ASA1
Jun 07 2014 14:00:37: %ASA-6-302013: Built outbound TCP connection 206381 for DMZ:192.168.1.173/22 (192.168.1.173/22) to inside:10.0.0.5/50313 (10.0.0.5/50313)
Jun 07 2014 14:01:07: %ASA-6-302014: Teardown TCP connection 206381 for DMZ:192.168.1.173/22 to inside:10.0.0.5/50313 duration 0:00:30 bytes 0 SYN Timeout
Logs from ASA2
Jun 07 2014 19:26:29: %ASA-3-710003: TCP access denied by ACL from 10.0.0.5/50176 to vlan4:192.168.1.173/22
Ping works fine from PC to IP 192.168.1.173.
Regards
MAhesh
Solved! Go to Solution.
06-07-2014 01:19 PM
do you have configured on ASA2 the following command:
ssh <IP address of PC> 255.255.255.255 Vlan4
If you have that configured, please post the full configuration of ASA2 (sanitised).
--
Please remember to select a correct answer and rate helpful posts
06-07-2014 01:19 PM
do you have configured on ASA2 the following command:
ssh <IP address of PC> 255.255.255.255 Vlan4
If you have that configured, please post the full configuration of ASA2 (sanitised).
--
Please remember to select a correct answer and rate helpful posts
06-07-2014 01:31 PM
That did the trick.
Regards
MAhesh
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide