Re: ASA 5505 Static Routes issues - Page 2

ciunetworks · ‎10-09-2010

I am having an issue with the asa 5505 and adding static routes. Whenever I add my static routes, the internet stops working. Can someone help with my config and what I am missing? Here is what I need it to do and attached is the current config.

ASA 5505 outside interface = 24.24.24.130/24 with default route of 24.24.24.129

DHCP of 10.10.10.100-199 uses PAT to access the internet

24.24.24.130 is on a site to site VPN and answers to VPN clients.

I need to add:

24.24.24.131 to map to 10.10.10.24

24.24.24.132 to map to 10.10.10.9

And I need to allow

www on 24.24.24.131

59002 on 24.24.24.132

I need more in the access list, but I have that done already.

Here is the static route I am entering that kills all internet traffic,

static (inside,outside) 24.248.96.131 10.10.10.24 netmask 255.255.255.255 25 0

static (inside,outside) 24.248.96.132 10.10.10.9 netmask 255.255.255.255 25 0

Jennifer Halim · ‎10-11-2010

Not really unless you have just added access-list on the inside interface of the ASA?

Are you able to telnet on port 25 from the mail server towards an external mail server?

Do you see any logs on the ASA that might be blocking the access?

Can you run packet tracer on the ASA for outbound mail traffic to see if it's issue on the ASA or somewhere else?

ciunetworks · ‎10-11-2010

Yes.. I can telnet to another mail server perfectly. Very strange. I am restarting the mail server. The inside access list allows all IP out.