cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
4278
Views
0
Helpful
13
Replies

Gateway cannot be reached through port Ethernet1/1 named “outside

Derek1993
Level 1
Level 1

Hello One More Time Community.
I have a problem with data interface and cann't resolve it: I have an error like this Gateway cannot be reached through port Ethernet1/1 named “outside". My configuratiion:

 

 

 

 

> show ip
System IP Addresses:
Interface                Name                   IP address      Subnet mask     Method
Ethernet1/1              outside                10.10.61.77      255.255.255.0   DHCP
Ethernet1/2              inside_1_2    192.168.1.1    255.255.255.0   manual
Ethernet1/3              inside_1_3 192.168.2.1    255.255.255.0   manual
Ethernet1/4              inside_1_4 192.168.3.1    255.255.255.0   manual
Ethernet1/5              inside_1_5 192.168.4.1    255.255.255.0   manual
Management1/1            diagnostic             unassigned      unassigned      DHCP
BVI1                     bvi                    192.168.77.1    255.255.255.0   manual
===============================================================
show network

Hostname                  : Firewall
Domains                   : google.com
DNS Servers               : 8.8.8.8
                            8.8.4.4
DNS from router           : disabled
Management port           : 8305
IPv4 Default route
  Gateway                 : 192.168.45.1
  Netmask                 : 0.0.0.0


==================[ management0 ]===================
Admin State               : enabled
Admin Speed               : 1gbps
Operation Speed           : indeterminate
Link                      : link-down
Channels                  : Management & Events
Mode                      : Non-Autonegotiation
MDI/MDIX                  : Auto/MDIX
MTU                       : 1500
MAC Address               : 40:06:D5:85:FF:80
----------------------[ IPv4 ]----------------------
Configuration             : Manual
Address                   : 192.168.45.45
Netmask                   : 255.255.255.0
Gateway                   : 192.168.45.1
----------------------[ IPv6 ]----------------------
Configuration             : Disabled

 

 

 

 

Plz Help Me !

 

13 Replies 13

Hi  @Derek1993 

Where do you see this error? On the firewall ?

you getway seems to be  192.168.45.1 and you outsinde is 10.10.61.77. You seems not have any interface on the network 192.168.45.0

@Flavio Miranda Ok and What kind of configuration I must to provide for Management Interface ? Help 

Derek1993
Level 1
Level 1

@Flavio Miranda  Hi added pictures of my configuration:

I believe the problem can be related to this config.  As you are checking "Use the Data interface as the Gateway" it is trying to send the data through the outside interface.

FlavioMiranda_0-1688588519076.png

 

 

 

 

 

 

 

Yes I am use this configuration beacause I haven't ANY  seperate network or cabel for management interface: I want to use only data interface, I don't have another cabel for Management interface!

I believe this is not a problem but you need to make sure you have recheability through  outside to the gateway. If the outside interface is connected to ISP, for example, this could be a problem for you.

Yes My oitside interface Connected to my ISP, I don't have any routers before my FP 1120 ? What I must to do in this situation ?

Try to select the option "Use unique gateway for the management interface" and select one interface you have connectivity with the manager.

Ok, BUT There is no any selection of interface, where I must to select interface, and One More I configure my FP vid FDM not FMC!
In this situation what I must to select ?

 

FlavioMiranda_0-1688589786035.png

Change from DHCP to static and add the IP address.  You might have connectivity through another interface. Try the BVI interface.  Use like 192.168.77.2  255.255.255.0 and use the BVI as gateway 192.168.77.1

Derek1993
Level 1
Level 1

I am change, BUT any result, still the same issues. One more whe I set management interface use this command configure network ipv4 dhcp-dp-route and set Configuration for Management interface to DHCP, I can run ping system 8.8.8.8 and All is Work, BUT I can ping system www.cicso.com
Here is output from CMD

===============[ System Information ]===============
Hostname                  : Firewall
DNS Servers               : 1.1.1.1
                            1.0.0.1
DNS from router           : disabled
Management port           : 8305

==================[ management0 ]===================
Admin State               : enabled
Admin Speed               : 1gbps
Operation Speed           : indeterminate
Link                      : link-down
Channels                  : Management & Events
Mode                      : Non-Autonegotiation
MDI/MDIX                  : Auto/MDIX
MTU                       : 1500
MAC Address               : 40:06:D5:85:FF:80
----------------------[ IPv4 ]----------------------
Configuration             : DHCP
----------------------[ IPv6 ]----------------------
Configuration             : Disabled

===============[ Proxy Information ]================
State                     : Disabled
Authentication            : Disabled

ping system 8.8.8.8

 

> ping system 8.8.8.8
PING 8.8.8.8 (8.8.8.8) 56(84) bytes of data.
64 bytes from 8.8.8.8: icmp_seq=1 ttl=121 time=16.1 ms
64 bytes from 8.8.8.8: icmp_seq=2 ttl=121 time=15.3 ms
64 bytes from 8.8.8.8: icmp_seq=3 ttl=121 time=15.4 ms
64 bytes from 8.8.8.8: icmp_seq=4 ttl=121 time=15.9 ms
64 bytes from 8.8.8.8: icmp_seq=5 ttl=121 time=15.10 ms
^C

--- 8.8.8.8 ping statistics ---
5 packets transmitted, 5 received, 0% packet loss, time 7ms

 

ping system google.com
ping: google.com: Temporary failure in name resolution

You are missing DNS.

PPPoE on FMC - Cisco Community

for the OUTside since it learn IP from DHCP you need to enable route for that interface 
this will make FPR have automatic default route toward ISP