cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2870
Views
0
Helpful
8
Replies

Public IPs and VLANs

daverutz58
Level 1
Level 1

Hi to all the helpful people in this community!

I'm still in the learning phase with my ASA 5510 but have been able to switch from my PIX to the ASA thanks to the communitiy's help!

My next issue is with our video-conferencing system. I have set up the Catalyst switch with 2 VLANs.

VLAN2 has 8 ports to which my telco's router, the ASA and the Polycom video-conference system are connected to. It's connected to the outside interface (Ethernet0/0) of the ASA.

VLAN3, which doesn't concern us here has 8 ports for the DMZ machines and is connected to the DMZ interface (Ethernet0/2) of the ASA.

The rest of the ports are on the Untagged VLAN which is connected to the inside interface (Ethernet0/1) of the ASA.

The Polycom is configured with a static public IP. Since I don't want to NAT the video-conferencing traffic, it is connected to a VLAN2 port. My issues are that the Polycom unit is not reachable from the outside world and it can't ping the outside world either. The Polycom is configured with 204.xx.xx.29/255.255.255.240. I have tried adding a static ARP entry to no avail. I connected a laptop with a static external IP with the same problems. This sort of setup worked fine with the PIX but I guess I'm missing something (which is not surprising!).

I have attached a diagram hoping that someone can get me on the right track.

Thanks!

Dave

1 Accepted Solution