Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
582
Views
0
Helpful
2
Replies

Access IPs from a connected ASA 5510

cscsocial
Level 1
Level 1

‎08-26-2010 01:48 PM - edited ‎03-06-2019 12:40 PM

This question came from our Cisco Support Community Twitter account.  https://twitter.com/cisco_support

Can ping all external IPs from an Adtran 3305, but can't ping or access some IPs from a connected ASA 5510 routed single mode.  Can you please help?

Labels:
0 Helpful
2 Replies 2

Richard Burts
Hall of Fame
Hall of Fame

‎08-26-2010 02:11 PM

There is not much information here so figuring out the problem is difficult.

Is it possible that attempting to access these IP addresses would go back out the same interface on which the request arrived? This is some times called hairpinning and by default is not allowed on the ASA. You can use these config commands to allow that to happen:

same-security-traffic permit inter-interface
same-security-traffic permit intra-interface

If that is not the issue then some additional information would be helpful:

- what is the relationship between the Adtran and the ASA?

- where are you (relative to the ASA) when you attempt to access these addresses?

- where are these addresses (relative to the ASA) when you attempt to access these addresses?

- do you have logging enabled on the ASA? and if so are there any messages in the logs of the ASA about the attempt to access these addresses?

HTH

Rick

HTH

Rick
0 Helpful

kbrubaker
Level 1
Level 1
In response to Richard Burts

‎08-27-2010 10:44 AM

Thanks for the response. The problem was a bad subnet mask on the external in
terface of the ASA.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card