Solved

Adding IP's to Cisco ASA5510

Posted on 2011-03-16
9
341 Views
Last Modified: 2012-05-11
I installed a new Avaya phone switch along with voicemail. The system consists of the PBX, Voicemail (onboard) and G430 Gateway. One of the features is it has the ability to send voicemail to your email via IMAP. This feature works inside the building but when I VPN into my network the voicemails do not get sent. I cannot also access my PBX through the Avaya software console in the event I had to make a change. Again inside the building is no problem.

I can only assume the PBX, Vmail, and gateway are being blocked by my ASA. I would like to add those three IP addresses to my ASA and normally I have a 3rd part take care of this but they are no being very responsive in order for me to continue my troubleshooting. My question is can someone provide me with the steps on how to add them to what I'm guessing in an access list in the ASA? Please let me know if I need to provide any additional information.
0
Comment
Question by:tmaususer
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
9 Comments
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 35147446
First another you might want to check: do the device have a default gateway? And if yes: does that point to the asa?
0
 

Author Comment

by:tmaususer
ID: 35147500
I'm sure what you are asking.
0
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 35147596
The PBX, Vmail, and gateway are network devices, right? So they have an ip address to be able to connect to your network. Then there should also be an option to set a default gateway (to get to ip adrresses that are not on the local network).
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 

Author Comment

by:tmaususer
ID: 35147629
The PBX has been configured with my default gateway. I have also made dns entries for the three devices. I'm certain the answer is in adding the three ip adresses of these devices into my asa. I just don't know who to do it.
0
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 35147765
Could you post a sanitized config of the asa? Or atleast all access-list and access-group statements currently in place?
0
 

Author Comment

by:tmaususer
ID: 35147822
I'm looking at my config file now. I think I need to do something like this:

access-list 102 extended permit ip 192.xxx.xxx.1 255.255.255.0 192.xxx.xxx.0 255.255.255.0
access-list 102 extended permit ip 192.xxx.xxx.2 255.255.255.0 192.xxx.xxx.0 255.255.255.0
access-list 102 extended permit ip 192.xxx.xxx.3 255.255.255.0 192.xxx.xxx.0 255.255.255.0

0
 
LVL 35

Accepted Solution

by:
Ernie Beek earned 250 total points
ID: 35147899
Depends. Do you have an access list on the inside interface?
If not, then perhaps the traffic from those three is not getting in to the VPN which is applied at two places: the nat0 (so traffic isn't natted) and in the crypto map (so traffic is sent in to the tunnel).

I don't know if what you put here is right because I don't know where this access list is applied. Need to see more of you config for that.
0
 

Author Comment

by:tmaususer
ID: 35148595
I finally got someone from our 3rd party company to get into the switch. It looks like I was close but he is working so fast I can't keep up. Looks like Cisco classess are in my future :)
0
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 35148684
Well good luck with that :)
And thx for the points.
0

Featured Post

[Webinar] Learn How Hackers Steal Your Credentials

Do You Know How Hackers Steal Your Credentials? Join us and Skyport Systems to learn how hackers steal your credentials and why Active Directory must be secure to stop them. Thursday, July 13, 2017 10:00 A.M. PDT

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Powerful tools can do wonders, but only in the right hands.  Nowhere is this more obvious than with the cloud.
This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Suggested Courses
Course of the Month9 days, 4 hours left to enroll

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question