Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1067
Views
0
Helpful
1
Replies

Firewall and switch not communicating

Jah8887
Level 1
Level 1

‎12-04-2017 08:18 AM - edited ‎03-08-2019 12:59 PM

Hi all, I am new to the forums and hope I post this in the right area.

I am setting up a small business and cant get their firewall and switch to ping each other. I have the setup below.

 

Comcast Business(internet) > ASA 5508-x firewall inside port >SG550X 24MP switch (port 24 connected to inside port on firewall)

 

I have tried just about everything I can think of and to no avail.  What I have found out though is once I plug the inside port from firewall to port 24 on the switch it locks up the switch and I have to reboot it.

 

Firewall

I have

enabled dhcp with only 2 addresses .1 for firewall and a .2 for switch

and tried with disabling dhcp but set static .1 address on inside port

I have tried modifying ACL lists

Tried Natting

I tried keeping the ports on the same vlan e.g. 1

Factory defaults and trying from scratch

and probably more than I can remember

 

Switch

I have

Disabled DHCP

Enabled DHCP

Without the cable plugged into port 24 I tried assigning a static IP to this port through the gui and it bombs out everytime. 

I used the command line to assign the static IP to the port 24 and it takes but locks up once I plug the cable into it.

I have disabled DNS on the switch

Disabled port security

Enabled port security

Disabled smartport

enabled smartport

disabled all vlans except for .1 and tried to get them to communicate with just one vlan

Tried setting up different vlans with no luck

and more

 

Any ideas on how I can get these 2 communicating, so that the dhcp server I will be hooking up to the switch, will give out the addresses and dns entries, to the rest of the wired devices on the network and allow the devices to get out to the internet?

 

I have a feeling I am missing something but not sure what.

 

Thanks

Labels:
0 Helpful
1 Reply 1

Flavio Miranda
VIP
VIP

‎12-04-2017 06:20 PM

Hi @Jah8887

 

   This should be something really straightforward. Take a look on the file attached. This is from a simple lab I was playing with. This switch is not SG550X but might help. The ASA is 9.X, probably the same you have. This device communicate with no problem on my Lab.

 Take a look, try to understand the config and let me know if you need help. 

I don't have DHCP on switch, as you can see, but, this is not complicate. Some configs on this file may be disregard by you as you may do not need it.

Just make both device communicate and then we can go one step further.

 

 

-If I helped you somehow, please, rate it as useful.-

 

Preview file
4 KB
Preview file
2 KB
0 Helpful
Customers Also Viewed These Support Documents