Read this Gartner Research Note and discover how your IT organization can automate and optimize DevOps processes using a toolchain architecture.
Course Of The Month
5 days, 17 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Cisco ASA5505 Firewall Issue
Posted on 2011-03-05
Dear Experts
I need your help I have an issue with my Cisco ASA5505 firewall.
Basically I can't get any web page to work through the firewall.
All pages just eventually time out I just can't seem to work out what the issue is!!!
Any assistance would be greatly appreciated
Copied below is the config I am currently using
I need your help I have an issue with my Cisco ASA5505 firewall.
Basically I can't get any web page to work through the firewall.
All pages just eventually time out I just can't seem to work out what the issue is!!!
Any assistance would be greatly appreciated
Copied below is the config I am currently using
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3-
3
7 Comments
This is my current config ExpertsExchange-Config.txt
Hi Robert,
Few things zou need to let us know:
++ Is your Outside IP address issued by DHCP?
++ Does this connection also provide you with DNS resolution?
I have noticed your default route outside is set as: "route outside 0.0.0.0 0.0.0.0 192.168.1.254 1" Which is the Internal IP address of your Firewall to the LAN. This should be set to your ISP's DF Gateway address or if its your lan, your next hop...
Few things zou need to let us know:
++ Is your Outside IP address issued by DHCP?
++ Does this connection also provide you with DNS resolution?
I have noticed your default route outside is set as: "route outside 0.0.0.0 0.0.0.0 192.168.1.254 1" Which is the Internal IP address of your Firewall to the LAN. This should be set to your ISP's DF Gateway address or if its your lan, your next hop...
Active 2 days ago
>route outside 0.0.0.0 0.0.0.0 192.168.1.254 1
You must remove this entry so that DHCP will learn the default route
You must remove this entry so that DHCP will learn the default route
Thanks for responding I am going to try out what Irmoore suggest which makes sense.
You don't know how long this has been driving me mad!!!
Message for Chouckham yes my outside address is issued by DHCP. Vlan 2 is plugged into a cable modem which doesn't have a fixed IP address. And that DHCP address does get DNS resolution.
I did also notice that I wasn't able to get an IP address from connecting switch port 0 directly into the cable modem. After quite a bit of fault finding I discovered the issue to be with Cisco using a very long Vlan2
Ethernet 0/0
Client-ID: cisco-1cdf.0f5c.61e7-outsi
I managed to get round this by setting up client id to use a MAC address the cable modem was use to speaking to.
This however never got me to a place to open web pages.
I am hoping by removing this entry it will
I will post back nad let you know if its a winner!!!
You don't know how long this has been driving me mad!!!
Message for Chouckham yes my outside address is issued by DHCP. Vlan 2 is plugged into a cable modem which doesn't have a fixed IP address. And that DHCP address does get DNS resolution.
I did also notice that I wasn't able to get an IP address from connecting switch port 0 directly into the cable modem. After quite a bit of fault finding I discovered the issue to be with Cisco using a very long Vlan2
Ethernet 0/0
Client-ID: cisco-1cdf.0f5c.61e7-outsi
I managed to get round this by setting up client id to use a MAC address the cable modem was use to speaking to.
This however never got me to a place to open web pages.
I am hoping by removing this entry it will
I will post back nad let you know if its a winner!!!
Exactly as both Irmoore and I pointed out the "route outside 0.0.0.0 0.0.0.0 192.168.1.254 1" is incorrect and should be removed.
Please let us know the outcome.
Please let us know the outcome.
Hi guys basically what you both suggested was correct so how do you want me to award the points.
I have to admit the user Chouckham suggestion was clearer in that he told me exactly what to do so would it be fair to split the points????
I have to admit the user Chouckham suggestion was clearer in that he told me exactly what to do so would it be fair to split the points????
Featured Post
With the ATEN CE624, you can now enjoy a high-quality visual experience powered by HDBaseT technology and the convenience of a single Cat6 cable to transmit uncompressed video with zero latency and multi-streaming for dual-view applications where remote access is required.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
We've been using the Cisco/Linksys RV042 for years as:
- an internet Gateway
- a site-to-site VPN device
- a leased line site-to-site subnet-to-subnet interface
(And, here I'm assuming that any RV0xx behaves the same way as an RV042. So that's …
I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable.
BACK…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses
Course of the Month5 days, 17 hours left to enroll
705 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.