Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Recently setup an ASA 5515 for remote VPN purpose. All the inbound and outboud traffic through the internal and external interfaces are working fine. There is an issue that the management port is able to telnet but unable to ping from different subne...
Hi Aditya,
The ASA management port is connected to the LAN directly, and my desktop as well. Other than the routers, there are no firewall and VPN filtering enabled in between. Moreover, my desktop is able to ping other hosts on the same subnet of t...
Hi Aditya,
Please see the capture below. It looks like it dropped the ICMP from different subnet. If the ICMP from the same subnet, it responded properly.
vpnc001# sh asp table socket
Protocol Socket State Local Address ...
Hi Aditya,
Sorry for the late response as the Easter holiday.
Just made the cap asp type asp-drop all and captured the details below.
vpnc001# capture asp type asp-drop allvpnc001# sh cap asp detail trace dump
4 packets captured
1: 14:18:24.97626...
Hi Aditya,
Yes, the Management port IP is part of the VPN. Attached a simple diagram to describe the connectivity. In the diagram, the VPN traffic is able to reach Host-A via Internal interface from external , and the Host-A also able to telnet to t...
Hi Aditya,
Thanks for the reply. For your first question, NO NAT statement has been configured. For the second question, the internal interface and management interface are segregated, which interface has there own default route.
interface GigabitEt...
