Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,
I followed examples from Internet to configure DMZ on ASA 5505 (version 9.*). The result is, I have traffic to a web server, it is accessible from outside, but the inside network has no access to Internet. I am posting here the relevant part of t...
Hei,
I have difficulty to understand how the commands for setting the configuration file path are working.
I have two configuration files in the firewall, both in the disk0:/
A.cfgB.cfg
Scenario:
------------The active configuration is B (i. e. loa...
Hi,I have ASA 5505, in routed mode, basic license.I run a web server in DMZ. I can reach Internet from DMZ. Also, the trafic from outside can reach the web server. However, if the web site is requested from within the DMZ, the request will fail, and ...
Hi,I am trying to configure DMZ on ASA 5505, basic license. After changes I have made I cannot access Internet from DMZ. I think I am missing an access list for DMZ, but I am not sure. Could someone please have a look at my test-config?Thank you.----...
Hi,I have ASA 5505 with basic licence, v9.1, ASDM 7.1. I want to create the DMZ for a web server.The interface 0 is for the outside networkThe interface 6 is for the DMZAll other interfaces are for the inside networkMy ISP provided me with one public...
Figured it out, so I am posting the solution here just in case if somebody else would need it.
If connection to Internet from inside is not working, despite that the DMZ is fine and all ASA configuration file looks OK, double check the information a...
I have tried it both from ASA and Windows command line.
On ASA I get the response:
RRRRR
Success rate is 0% (0/5)
From command line I get "Request timed out". Interestingly I get the same message when I run ping from command line on the web server...
he response is "Flow is denied by configured rule" Using ASDM it navigates me to Configuration>Firewall>Access rules
There is a Global implicit rule: any any ip Deny
If I do packet tracer from inside to outside interface, I get result "No route to h...
Also, I notice when running the command (using ASDM) "show running-config" that the switchport access is missing for inside ports:
!interface Ethernet0/0 switchport access vlan 2
!interface Ethernet0/1 switchport access vlan 5!interface Ethernet0/2...
