Cisco VPN :: ASA 5505 - Unable To Ping Or Use DNS On LAN

Aug 18, 2011

I've been called upon to fix the  SSL VPN issues in our ASA5505.  The issue I am having is that I am able  to log into the vpn, access the internet, but I'm unable to access  anything on the LAN.  I can't use ping or use DNS. 
 
I'm using ASDM v. 6.2(1) and ASA verison 8.2(1).  I'm not comfortable using the CLI and prefer the GUI.

View 13 Replies


ADVERTISEMENT

Cisco Firewall :: ASA 5505 Unable To Ping

Sep 9, 2011

I just tried to configure my ASA but unable to ping.  My setup is as follows:
 
Cable Modem (DHCP from IPS)---> ASA (192.168.1.1)--->Belking Router (192.168.5.1)--->Switch (192.168.5.14)--->
 
ASA Version 8.2(3)
!
hostname WoodHomeASA-1

[Code].....

View 30 Replies View Related

Cisco Firewall :: 5505 - ASA Unable To Ping Internet From DMZ

Apr 5, 2013

I have setup 5505 ASA  for Testing purposes. It has static route to layer 3 switch on outside interface that  goes  to the internet.
 
ciscoasa#                                                sh route
Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area

[Code].....

View 20 Replies View Related

Cisco Firewall :: ASA 5505 With IOS 8.4 / Unable To Ping Or Map Drives To It?

Aug 12, 2012

I configured a new Asa 5505 with Ios 8.44-1-k8.bin and when I installed the Asa the client's after about 1 hour were unable to ping or map drives to the Asa.  I got the following error,%ASA-2-106007: Deny inbound UDP from XXXX to XXXX due to DNS Query. I added the command same-security-traffic permit intra-interface they were then able to ping the server and connect to the Internet, but still unable to map drives i could see the connections from the Pc's to the server in a show conn with was tcp port 445 with Saa? I reverted back to Ios 8.25 and everything works.

View 2 Replies View Related

Cisco Switching/Routing :: 4.2.2 Unable To Ping 1 Internet Site From Edge Router Able To Ping

Jan 18, 2013

From My Router that connects to Cable modem i am unable to ping website 4.2.2.2I am able to ping all other websites fines.Same website i can ping from my pc and all other switches fine.Router has only 1 ACL thats for NAT.

View 25 Replies View Related

Cisco VPN :: Cannot Connect Or Ping ASA 5505 In LAX From That In SFO

Sep 19, 2012

I am trying to set up a lan to lan vpn access with 2 asa5505's but I cannot ping, traceroute or connect from either side.  I can connect to both ASA 5505's from the internet, and connect to the internet FROM both 5505's, just not one to the other.  I can ping the network GATEWAYS to the routers, just not the routers themselves.

Both of these machines have been configured for previous VPNs but that configuration has been removed.

View 12 Replies View Related

Cisco 5505 - Cannot Ping The Laptop From The Device

Jul 21, 2011

I have a new 5505 that im trying to upgrade the IOS on. The 5505 and the laptop are connected via a 5 port switch.From the laptop i can ping the inside interface of the 5505, but i cannot ping the laptop from the 5505. As a result, my TFTP is failing.

View 5 Replies View Related

Cisco VPN :: ASA 5505 Can't Ping Remote Hosts

Jun 24, 2012

configuring ASA 5505 to be able to ping remote host.Setup - We have a site-to-site (192.168.1.0/24 - 192.168.2.0/24) VPN setup with client VPN access (IP Pool, 172.16.50.0/24) on 192.168.1.0 ASA 5505.Issue - Not able to ping host on 192.168.2.0 from VPN client 172.16.50.0 but  able to ping 192.168.1.0 host.

View 8 Replies View Related

Cisco VPN :: Disable To Ping Outside From Public IP ASA 5505

Jul 19, 2012

We have ciso asa 5505 and we are using one public ip of 155.155.155.9 , so i wanna disable to ping from outside this ip , but not effect our site to site and remote vpn connections ,the only thing i need is to disable the public ip to ping from outside.

View 7 Replies View Related

Cisco VPN :: ASA 5505 - VPN Cannot Ping Internal Network

Nov 11, 2012

I have the connection working with my ASA 5505 but cannot ping the internal network. (Note external interface is getting the IP via DHCP)

View 4 Replies View Related

Cisco Firewall :: ASA 5505 - Ping Between Two VLANs?

May 24, 2012

i am trying to get my ASA 5505 with 2 internal VLANs (voice and data) and external internet VLAN to run in router as a stick, and route between VLANS.
 
I cant get it working though:

[code]...

View 4 Replies View Related

Cisco Firewall :: ASA 5505 - Cannot Ping Any Of Subnet IPs

Sep 7, 2011

We want to use an ASA as a pure routing device. Our network has several internal subnets (10.1.x.0/24), and we want to be able to reach them from outside and to allow access between them.
 
We have a defined a VLAN for each subnet range with the same security-level, added it to an Ethernet port and made the Ethernet that acts as outside as a trunk, and defined it as the global routing.
 
We cannot ping any of the subnet IPs defined in the ASA from outside nor we can ping it from the internal IP addresses.
 
Configuration:
: Saved
:
ASA Version 8.2(1)

[Code].....

View 3 Replies View Related

Cisco Firewall :: ASA 5505 - Nat Can't Ping Internet

Jun 17, 2012

I am trying to configure Nat on a clean ASA 5505, but can't get it to work.  I ran the commands below. On the ASA I can ping the internet and inside vlan ip.  On my laptop I can ping the ASA inside vlan ip, but I can't ping the outside vlan ip.  From another network I can ping the ASA outside public ip.  Is there an access-list that denies inside from accessing outside?
 
I am running version 8.4(3) and I erased the existing configuration.
  
ASA(config)# interface vlan 1
ASA(config-if)# ip address 10.0.0.1 255.255.255.0
ASA(config-if)# nameif inside

[Code].....

View 8 Replies View Related

Cisco Firewall :: ASA 5505 Ping Inside To Outside Don't Go

Sep 29, 2012

I have 2 ASA and would like to build a Side-to-Side VPN between these ASA. So I can learn something about configure a ASA for different thinks. But now I don`t can Ping from a Client to the Internet-Router.My Configuration is:
 
Client IP 192.168.1.100 <===> ASA Inside 192.168.1.1 /Outside 192.168.178.254 <===> Router 192.168.178.1
 
Is there something wrong at my config? or do I need inside private Adresses and at the Outside Global IP`s.
 
At the Router I have a Static Route that the 192.168.1.0 / 24 ist to find over Gateway 192.168.178.254

View 2 Replies View Related

Cisco Firewall :: ASA 5505 Cannot Ping From One Subnet To Another?

Aug 4, 2012

I have been tasked with replacing our company eSoft router with a Cisco ASA 5505 with the upgraded security license.   I have been working on the configuration for a couple of weeks now, after reading hundreds of forum posts, watching youtube videos, and endless google searching, and despite my best efforts I am still having an issue I can’t figure out.
 
I have a couple of subnets, that when the ASA is connected, I cannot ping, nor can they get to the internet or our Exchange server. At this point I’m not sure if it’s an access rule issue, NAT issue, or DNS issue.
 
Here is the network layout:
 
ASA: 192.168.0.2 (Primary Gateway)
192.168.0.0 (Primary facility, ASA is the gateway)
192.168.2.0 (Second facility, connected via Verizon point-to-point)
192.168.3.0 (Third facility, connected via Verizon point-to-point)

[Code].....

View 7 Replies View Related

Cisco Firewall :: Ping Router From ASA 5505?

Mar 19, 2013

I am trying to troubleshoot an ASA5505 connectivity issue. My initial tests are to ping the Internet router from the ASA This is failing and also a sh arp only shows internal addresses.
 
I have to go to site to check this out to confirm the following.
 
1: Should I be able to ping the Internet router from the ASA?

2: Do I need to permit any icmp to do this?

3: Should a sh arp show the address of the internet router?
 
I tried entering the command permit icmp any outside
 
However I got the error route already exists 0.0.0.0/0.0.0.0

View 2 Replies View Related

Cisco :: ASA 5505 - Ping Times To NAT Addresses?

Nov 28, 2011

If I ping a NAT'ed IP address configured on an ASA 5505, is it handled at the firewall (as far as priority) as if I were pinging the firewall interface itself, or the end device?  The reason I ask is I am seeing waves of ping latency that I can relate to data transfers, but the nothing is even close to being maxed out as far as CPU, memory, or bandwidth.  My guess is this is being handled by the ASA in software instead of in hardware. 

View 0 Replies View Related

Cisco VPN :: ASA 5505 - Can Ping Outside Interfaces But Cannot Get Replies

Mar 23, 2013

I have set up site-site VPN on 5505s on 2 sites. I can ping outside interfaces from both sites but cannot get replies when I ping clients behind the 5505 from the ASA itself. I have also tried to ping from 10.x.x.x to 217.41.x.x and to 192.168..x.x but do not get a response.
 
I was expecting the configuration to be enough but there might be something I am missing.

View 6 Replies View Related

Cisco Firewall :: ASA 5505 - Cannot Ping Outside NAT Interface

Nov 14, 2011

I have a Cisco ASA 5505, the problem is I am not able to ping to outside natted interface (ip: 172.88.188.123 and 124 and 125) from inside network I have looked for ASA documentation through the internet and still got nothing.

the config are:
  
: Saved
:
ASA Version 8.2(1)
!

[Code].....

View 2 Replies View Related

ASA 5505 - Can't Ping Any VLAN Interface

Aug 9, 2012

I'm trying to set up a Guest VLAN for wireless at a client site, and I feel like I'm missing something small in the configuration, since I can't ping any of the VLAN interfaces from my laptop when the address is statically set to something in the 172.20.100.x range.

I've pasted the configs for the ASA 5505 and the 6 switches below for convenience. Near as I can tell, all should be well. The ports are in trunking mode, the "show cdp neighbors" command returns the proper information, VLAN 100 exists on all the switches, etc.

Code:
ASA Version 7.2(4)
!
hostname ASA
domain-name xxxx.local
enable password Cj3LF.ehxXN3xVkxWcxd encrypted
passwd Cj3LF.ehxXN3xVkWcxd encrypted
[Code] ......

View 17 Replies View Related

Cisco :: ASA 5505 NAT - Execute The Ping It Will Show Timeout?

Dec 5, 2011

I have setup this firewall with a NAT, everything seem fine. I try pinging from my external translate IP to the internal IP address, on the ASDM Log i can see the traffic built and teardown but on the PC i used to execute the ping it will show timeout. My configuration as belows:

interface Ethernet0/0
switchport access vlan 2
!
interface Ethernet0/1
!
interface Ethernet0/2
!
interface Ethernet0/3
!
interface Ethernet0/4
!
interface Ethernet0/5
!
interface Ethernet0/6
!
interface Ethernet0/7
!
interface Vlan1
nameif inside
security-level 100
ip address 192.168.1.10 255.255.0.0[code]....

View 3 Replies View Related

Cisco Firewall :: New ASA 5505 / Can't Ping Inside Interface

May 10, 2011

I have a new ASA 5505 and all is working fine, I can CLI and ASDM into it, but just can't ping the inside interface, do I need to enable a feature to make this work somehow?

View 1 Replies View Related

Cisco Firewall :: ASA 5505 8.2 - Clients Can't Ping External IP

Nov 4, 2011

I've configured a 5505 but internal clients can't ping external ip. To test I've connect a pc with the ip of the default router on the Outside int the ASA can ping the PC and the PC can ping the ASA, but internal clients can't ping the PC
 
PC config 195.12.23.241/28
 
Here's the ASA config, so far I've wiped the ASA and started with a blank sonfig and built it up but still not working.
 
 
ASA Version 8.2(5)
!
 
!
interface Ethernet0/0
switchport access vlan 2
!
interface Ethernet0/1
!
interface Ethernet0/2
!
interface Ethernet0/3
!
interface Ethernet0/4
[Code] .....

View 2 Replies View Related

Cisco VPN :: ASA 5505 AnyConnect Can RDP To Clients But Can't Ping / ICMP

Feb 26, 2012

I setup and SSL anyconnect VPN on my Cisco ASA 5505. It works well and connects with out a problem. However, I can't ping any internal clients, but I can RDP to them. Most of the time people end up posting their config so I will as well.
  
MafSecASA# show run
: Saved
:
ASA Version 8.2(1)

[Code].....

View 3 Replies View Related

Cisco VPN :: ASA 5505 Can't Ping Any Device Internal Network

Feb 6, 2011

I'm new to this cisco 5505 and I want to carry out a task as simple as a remote access VPN, in my case I did the wizard, with time on my test, I could connect to the VPN, but I can not ping any device internal network. [code]

View 6 Replies View Related

Cisco Firewall :: 5505 - Can't Ping ASA Inside Interface

Dec 12, 2011

I have an ASA 5505 that I'm trying to set up a guest network on.  I've configured an interface as a trunk and allowed the 2 vlans but I'm not getting any layer 3 to it.  The switch connected to it is a 3560 and port is configured as a trunk with the same vlans.
 
I can't ping the ASA inside interface but I see its MAC address in the swtich's table.
 
[code]....

View 4 Replies View Related

Cisco Firewall :: Ping To Internet From Workstation Behind ASA 5505

Jul 30, 2011

I have a ASA 5505.  I want to be able to ping from my workstation to some address, lets say [URL].  My workstation is connected to Ethernet 0/2.  I have tried playing around with the ACL but am not able to accomplish this.   
 
Result of the command: "show running-config"
: Saved:ASA Version 8.2(1) !hostname ciscoasadomain-name home.7vnmotorsports.com

[Code]....

View 5 Replies View Related

Cisco :: Unable To Ping In Dos?

Mar 9, 2013

*I have 2 cisco routers 2811 router A&B*using 0/0 for WAN and 0/1 for LAN on both routers*both routers are connected together with crossover cable to 0/0. recieve link and activity*both routers are on the same subnet Router A:0/0 192.168.1.1/24 - router A:0/1 192.168.2.1/24 ; Router B:0/0 *192.16.1.2/24 router B:0/1 192.168.3.1/24*I can ping the inside and outside address of both router from PCs connected at its respectable end. *PC A 192.168.2.2/24 PC B 192.168.3.2/24 *when connected to router A 0/1 and I try to ping router B 0/0 it times out in DOS* but I AM (CAN) able to ping from PC A to router B 0/0 in hyperterminal, telnet and Cisco SDM. I just CANNOT ping in DOS?

View 10 Replies View Related

Cisco Firewall :: 5505 - Ping And SNMP Broken After 8.4(4)1 Upgrade?

Sep 19, 2012

Before upgrading to 8.4(4)1 I was able to ping our inside interface accross the VPN.  Now I cannot.  Because ping is not working, my SNMP server thinks that the device is offline however I know the VPN tunnel is still up and the remote branch office is working fine.  Here is the config of the branch office ASA 5505 in question. How to get icmp working again?
 
ASA Version 8.4(4)1
!
hostname BranchASA5505
domain-name houston.deh

[Code].....

View 2 Replies View Related

Cisco Firewall :: ASA 5505 Cannot Ping Secondary Internal Network?

Jan 15, 2012

Cisco ASA 5505 Cannot Ping Secondary Internal Network.

View 9 Replies View Related

Cisco VPN :: Remote Access Connects To 5505 But Cannot Ping Any Servers

Sep 19, 2012

I have a cisco 5505 and am trying to configure it with ASDM 6.4.
 
My vpn client connects ok to the network but I am unable to reach any of the servers.
 
I'm sure its a simple configuration issue as I don't have much experience with Cisco configuation.

View 5 Replies View Related

Cisco Firewall :: ASA 5505 - Cannot Ping Local Traffic And Hosts

Jul 24, 2012

I have, what I believe to be, a simple issue - I must be missing something. Site to Site VPN with Cisco ASA's. VPN is up, and remote hosts can ping the inside int of ASA (10.51.253.209). There is a PC (10.51.253.210) plugged into e0/1.

I know the PC is configured correctly with Windows firewall tuned off. The PC cannot get to the ouside world, and the ASA cannot ping 10.51.253.210.

I have seen this before, and I deleted VLAN 1, recreated it, and I could ping the local host without issue. Basically, the VPN is up and running but PC 10.51.253.210 cannot get out

ASA Version 7.2(4)
!
hostname *****
domain-name *****
enable password N7FecZuSHJlVZC2P encrypted
[Code]...

View 2 Replies View Related

Cisco VPN :: 5520 / 5505 - VPN Tunnel Ping Branch Side But Not Other Way Around

Nov 2, 2012

I have HQ side with ASA 5520 (8.4) & Branch Side with ASA 5505 Design

VPN LAN<------->ASA5520(8.4)----->Thomson Business TG628s----->Internet<--->ADSL Modem------>ASA5505(8.2)
 
Now on both modems UDP 500 & TCP/UDP 4500 ports are enabled I can ping from internal LAN of HQ to internal LAN of branch but I cant ping from internal LAN of branch to internal LAN of HQ

HQ ASA 5520 Side
ASA Version 8.4(3)
host name aljoaib-fw01
[ code].... 
Branch side ASA 5505
ASA Version 8.2(5)
host name GTC- DMM- FIREWALL
domain-name ALJOAIB.COM
enable password 7pgp93AEPfHtDc5N encrypted
[Code]....
 
Both sides have static ip address.

View 22 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved