04-03-2024 09:38 AM
I have my firewall like this:
int gig1/1
nameif inside
ip add 192.168.100.1 255.255.255.0 (switch 0)
no shut
int gig1/2
nameif outside
ip add 200.100.10.1 255.255.255.252 (switch 1)
no shut
int gig1/3
nameif DMZ
security-level 50
ip add 192.168.200.1 255.255.255.0
I've already configured route to outside
route outside 0.0.0.0 0.0.0.0 200.100.10.2
router rip
ver 2
no au
net 192.168.100.0
The problem is I cant ping from pc0, (inside 192.168.100.2) to pc5, (outside 200.100.10.2)
Please help me !!
04-03-2024 10:03 AM
You need to make secuirty level for Inside to be 100
And also ypu need icmp inspection under policy map
MHM
04-03-2024 11:29 AM
You will also need an ACL that explicitly permits the ICMP echo-reply return from the lower security interface to the higher security interface.
04-03-2024 11:46 AM
If the switch know how to reach back to 192.168.100.0/24 network, i see you have configured RIP, Hope you RIP working,
try simple command :
fixup protocol icmp
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide