Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
910
Views
0
Helpful
2
Replies

Inter Vlan Routing

james rivers
Level 1
Level 1

‎01-23-2019 04:08 AM - edited ‎03-03-2019 08:59 AM

Ok here is the setup :

Cisco L3 Switch3650

Gi1/0/1 Connected to ASA 192.168.90.1 for DMZ and Internet access

1/0/1 no switchport 

1/0/1  IP address 192.168.90.2 /30 

Gateway of last resort is 192.168.90.1 to network 0.0.0.0

ICMP Success to 192.168.90.1 

ICMP Sucess to 8.8.8.8

 Cisco Inter Vlan 

VLAN 200

INT VLAN 200 IP Address 192.168.200.1 /24

Gi 1/0/3 switchport access vlan 200

 

PC

IP Address 192.168.200.10 /24

GW 192.168.200.1

ICMP Success to 192.168.200.1

ICMP Success to 192.168.90.2

ICMP FAIL to 192.168.90.1

ICMP FAIL to 8.8.8.8

 

 

 

 

I suspect the failure occurs due to a routeing issue between the ASA and 3650.  Note I have no auth on the ASA.  But the 3650 can hit the 8.8.8.8 then surely it is a routing issue on the 3650 taking packets from VLAN 200  etc..

 

Any thoughts/suggestions? 

Labels:
0 Helpful
2 Replies 2

Seb Rupik
VIP Alumni
VIP Alumni

‎01-23-2019 04:29 AM

Hi there,

I suspect that the ASA does not have a route for 192.168.200.1 /24 ie:

 

 

route inside 192.168.200.0 255.255.255.0 192.168.90.2

 

cheers,

Seb.

0 Helpful

AvnerMiguel
Level 1
Level 1

‎01-23-2019 05:35 AM

Hi,

 

Another thing that you can check is the rules of the ASA, maybe he doesn't accept traffic from the network 192.168.200.0/24. 

 

Regards,

Avner Miguel

0 Helpful
Customers Also Viewed These Support Documents