Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

networking issue between sonicwall TZ100 and ASA5505

Posted on 2013-06-25
6
Medium Priority
?
298 Views
Last Modified: 2013-11-12
Sonicwall handles data network 10.0.0.0/24
ASA5505 handle voice network 10.0.1.0/24
ASA5505 IP 10.0.1.1/24  (inside)
I have configured the sonicwall x2 interface to have the IP of 10.0.1.253/24, and connected a cat5 to one of  the ports on the ASA5505 that's part of vlan1 (inside).
no special routes or acls have been done yet.
The Sonicwall  can ping all my 10.0.1.x IP's (10.0.1.253 (x2 on the sonicwall), 10.0.1.1 (asa5505), 10.0.1.107 (voip phone), etc..
But when I go to ping or browse to my phones using IE (10.0.1.107) I'm unable to ping them from the server or PC on the 10.0.0.0/24 network.
So is it a routing issue, or more of a DNS issue?
The only IP I can ping from the 10.0.0.x network is 10.0.1.253, which is the X2 interface on the sonicwall.

The goal is to be able to open IE on the server or PC that's on the 10.0.0.0/24 network, type in my voip ph IP of 10.0.1.107 and access the phones web interface.

I've also provided a simple network diagram.

thanks
Winston
network.jpg
0
Comment
Question by:spectrumIT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 5

Expert Comment

by:JasonDuncanworks
ID: 39276768
If you cannot ping by IP then its not a DNS issue, with SonicWALLS you have to rules to allow the traffic to go to the other subnets.

Check this see if it matches.

http://serverfault.com/questions/86325/sonicwall-route-traffic-through-specific-interface-based-on-destination
0
 
LVL 17

Expert Comment

by:lruiz52
ID: 39276981
If you are not using a routing protocol, you will need to add a static route on the asa to the 10.0.0.0/24 network, you will also need some acl's
0
 
LVL 4

Expert Comment

by:iconnectu
ID: 39277302
As lruiz52 write, you have to create a static roule on the ASA for the 10.0.0.0/24 Network. Otherwise the ASA will send all the traffic to the default Gateway (WAN).

If you try to ping a IP Adress, DNS is not involved. IF you try to Ping server.domain.local , you need DNS to translate den DNS name in a IP Address.

Also make sure, that the Firewall on the TZ100 is open from X2 to X0.
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:spectrumIT
ID: 39278527
ok, just need to clear up a few items..
I've put the 10.0.0.0/24 route into the ASA to the X2 (10.0.1.253), and I can ping everything on the 10.0.0.0/24 network from the ASA.

but I'm unable to ping from my PC or server on the 10.0.0.0/24 network to the phones on the 10.0.1.0/24 network.  The only thing I can ping is the x2 interface on the sonicwall which is 10.0.1.253.

The sonicwall wall itself can ping everything on the 10.0.1.0/24 network.

so I believe I need a route within the sonicwall - but when I talked with support they said no, and I've tried several different routes on the sonicwall and nothing as worked yet.
0
 

Accepted Solution

by:
spectrumIT earned 0 total points
ID: 39631439
issue was resolved by multi homing a PC.
0
 

Author Closing Comment

by:spectrumIT
ID: 39641083
n/a
0

Featured Post

New feature and membership benefit!

New feature! Upgrade and increase expert visibility of your issues with Priority Questions.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Originally, this post was published on Monitis Blog, you can check it here . It goes without saying that technology has transformed society and the very nature of how we live, work, and communicate in ways that would’ve been incomprehensible 5 ye…
Tech spooks aren't just for those who are tech savvy, it also happens to those of us running a business. Check out the top tech spooks for business owners.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Suggested Courses

609 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question