About Phonovation

Phonovation · 03-10-2022

I have a Cisco with two LIVE interfaces. They aren't failover controlled. I can ping one of the interface from the outside, but not the other. Packet capture shows the incoming echo, but no reply on the interface not working. TCP/UDP traffic works fi...

Phonovation · 09-01-2018

Hello all, I have these two nets connected over the public internet with ASA 5510s. 192.168.0.0 < -- ASA1 ---> Internet <--- ASA2 --> 192.168.5.0 Each net does either a simple dynamic or static nat for outbound access over it's local ASA....

Phonovation · 03-10-2022

I wanted to be able to ping WAN2 from outside

Phonovation · 03-10-2022

route outside 0.0.0.0 0.0.0.0 75.35.14.1 1 track 1 <-- main ISProute outside2 0.0.0.0 0.0.0.0 78.1.114.113 10 <--- secondary ISP

Phonovation · 03-10-2022

Makes sense. Static 1 to 1 NAT for the entire secondary WAN to another server isn't an option for me. I have about 10 nats to various servers already configured for it. I can't NAT icmp directly. Do I have no option here?

Phonovation · 09-01-2018

Got it:1) add it to the crypto ACL as specific host to specific public host2) add phase 2 single specific host to same specifib public host3) on the other side, create a matching reverse ACL4) on the other side, set same-security-interinterface (was ...

Member Since	‎09-01-2018 02:21 PM
Date Last Visited	‎03-21-2022 05:18 PM
Posts	6
Total Helpful Votes Received	20

User Statistics

User Activity

ASA 9.2 - Unable to ping secondary WAN interface from outside

Outbound NAT for single host behind an ASA located over an IPSEC tunnel.

Re: ASA 9.2 - Unable to ping secondary WAN interface from outside

Re: ASA 9.2 - Unable to ping secondary WAN interface from outside

Re: ASA 9.2 - Unable to ping secondary WAN interface from outside

Re: Outbound NAT for single host behind an ASA located over an IPSEC tunnel.