06-17-2021 12:36 AM
Hello,
I created a new context on an ASA, copied the ACL and NAT configuration from another ASA in it. But the internet is not working on the VMs if I do not create a new ACL with any ip or any http, http and icmp for ping. What am I missing? On other contexts we have any ip deny and internet is working...
Thank you!
06-17-2021 01:31 AM
In ASA Context means, another FW.
So you need to check below :
is the new Context ASA have routing in place to reach internet. Do you have correct interfaces allocated in and outside ?
show run will help to find out what is wrong ?
06-17-2021 01:39 AM
Yes, we have outside and inside and others as well. Routing to outside is set up because internet is working from asa directly (inside the context) and also working on VMs but only with any any ip allow for example. If I set any any ip deny internet is no longer working on VM (no ping and no browsing). Yet, there are other contexts with any any ip deny and internet works.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide