Solved

networking issue between sonicwall TZ100 and ASA5505

Posted on 2013-06-25
6
293 Views
Last Modified: 2013-11-12
Sonicwall handles data network 10.0.0.0/24
ASA5505 handle voice network 10.0.1.0/24
ASA5505 IP 10.0.1.1/24  (inside)
I have configured the sonicwall x2 interface to have the IP of 10.0.1.253/24, and connected a cat5 to one of  the ports on the ASA5505 that's part of vlan1 (inside).
no special routes or acls have been done yet.
The Sonicwall  can ping all my 10.0.1.x IP's (10.0.1.253 (x2 on the sonicwall), 10.0.1.1 (asa5505), 10.0.1.107 (voip phone), etc..
But when I go to ping or browse to my phones using IE (10.0.1.107) I'm unable to ping them from the server or PC on the 10.0.0.0/24 network.
So is it a routing issue, or more of a DNS issue?
The only IP I can ping from the 10.0.0.x network is 10.0.1.253, which is the X2 interface on the sonicwall.

The goal is to be able to open IE on the server or PC that's on the 10.0.0.0/24 network, type in my voip ph IP of 10.0.1.107 and access the phones web interface.

I've also provided a simple network diagram.

thanks
Winston
network.jpg
0
Comment
Question by:spectrumIT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 5

Expert Comment

by:JasonDuncanworks
ID: 39276768
If you cannot ping by IP then its not a DNS issue, with SonicWALLS you have to rules to allow the traffic to go to the other subnets.

Check this see if it matches.

http://serverfault.com/questions/86325/sonicwall-route-traffic-through-specific-interface-based-on-destination
0
 
LVL 17

Expert Comment

by:lruiz52
ID: 39276981
If you are not using a routing protocol, you will need to add a static route on the asa to the 10.0.0.0/24 network, you will also need some acl's
0
 
LVL 4

Expert Comment

by:iconnectu
ID: 39277302
As lruiz52 write, you have to create a static roule on the ASA for the 10.0.0.0/24 Network. Otherwise the ASA will send all the traffic to the default Gateway (WAN).

If you try to ping a IP Adress, DNS is not involved. IF you try to Ping server.domain.local , you need DNS to translate den DNS name in a IP Address.

Also make sure, that the Firewall on the TZ100 is open from X2 to X0.
0
Instantly Create Instructional Tutorials

Contextual Guidance at the moment of need helps your employees adopt to new software or processes instantly. Boost knowledge retention and employee engagement step-by-step with one easy solution.

 

Author Comment

by:spectrumIT
ID: 39278527
ok, just need to clear up a few items..
I've put the 10.0.0.0/24 route into the ASA to the X2 (10.0.1.253), and I can ping everything on the 10.0.0.0/24 network from the ASA.

but I'm unable to ping from my PC or server on the 10.0.0.0/24 network to the phones on the 10.0.1.0/24 network.  The only thing I can ping is the x2 interface on the sonicwall which is 10.0.1.253.

The sonicwall wall itself can ping everything on the 10.0.1.0/24 network.

so I believe I need a route within the sonicwall - but when I talked with support they said no, and I've tried several different routes on the sonicwall and nothing as worked yet.
0
 

Accepted Solution

by:
spectrumIT earned 0 total points
ID: 39631439
issue was resolved by multi homing a PC.
0
 

Author Closing Comment

by:spectrumIT
ID: 39641083
n/a
0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question