Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
LAN traffic is going through the ASA5512 fine, onto a single switch and then to servers.We are trying to NAT some internet IPs to VLANs, and the connections are timing out. The connection is built as below but the only packets captured on the vlan-10...
I figured this out in the end. The ASA was OK, it was the switch that was wrong. I had not included the port that the ASA was connected to in VLAN 100.Therefore the traffic was presumably leaving the ASA, but then was getting bounced by the switch.
The nat to the outside interface is correct. We want to use some 5.x.x.x addresses directly, in which case 5-Internet is used, but when the VLAN is in use, we want to NAT the 5.x.x.x address directly to the 172.16.100.x address, which it seems to be ...
Thanks for your response.No, I can't ping the server from the ASA, though I can ping the vlan-100 interface.We are running TCP State Bypass as there will ultimately two ASAs from two separate internet feeds in a datacentre and we think response traff...
