Solved

ASA:Accessing Outside Servers and DMZ servers at a time

Posted on 2011-09-23
5
220 Views
Last Modified: 2012-05-12
Hi,

Here my requirement is

I want to access internet (outside) and our DMZ-1(security Interface 90) servers and
DMZ-2 Servers (security level 80) at a time .

My System is in Inside Interface (Secuirty is default 100) and Ip address is 172.16.10.22

Regards
ramu
0
Comment
Question by:RAMU CH
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 35

Assisted Solution

by:Ernie Beek
Ernie Beek earned 250 total points
ID: 36586090
Well, normally when your behind the highest security interface you should be able to get to all lower level interfaces. You're implying that you cannot do that?
0
 
LVL 33

Expert Comment

by:MikeKane
ID: 36587170
Can you post a sanitized config and a SHOW VER result...
0
 
LVL 1

Author Comment

by:RAMU CH
ID: 36591400
Hi Erniebeek,

Conceptually it is true but technically it is not happening , i have to NAT my PC with the respective
Outside/DMZ range IP's
0
 
LVL 5

Accepted Solution

by:
Feroz Ahmed earned 250 total points
ID: 36593771
Hi,

To Access Outside Network or Internet the configuration should be as below on pix.

ASA(config t)#access-list 101 permit icmp any any echo-reply
ASA(config t)#access-group 101 in interface outside
with above configuration you should be able to access outside and dmz servers in Network .
0
 
LVL 1

Author Closing Comment

by:RAMU CH
ID: 36946806
Thanks
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
ASA ISP failover 3 31
how to create the monitoring for Spiceworks 2 24
GBIC "Gi0/25 notconnect 1auto auto unknown" 3 56
How to disable sflow Cisco nexus 9k 3 19
Cisco Pix/ASA hairpinning The term, hairpinning, comes from the fact that the traffic comes from one source into a router or similar device, makes a U-turn, and goes back the same way it came. Visualize this and you will see something that looks …
This past year has been one of great growth and performance for OnPage. We have added many features and integrations to the product, making 2016 an awesome year. We see these steps forward as the basis for future growth.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question