Multi Gateway config with Cisco ASA
Posted on 2014-03-26
This is our network structure:
Internet -> Site A (192.168.1.0 with gateway 192.168.1.250) Cisco ASA 5505
Internet -> Site B (192.168.2.0 with gateway 192.168.2.250) Juniper Firewall
I can access the site A and B if I am switch gateway ip, this means: if connecting to A i need to have gateway ip: 192.168.1.250, if B I need to have 192.168.2.250.
However I want this: the Cisco can access both A and B, this is not working, I tried add a route, and added the ACL and added access rules for it, but still not working.
I tried to ping site B when im on the gateway on Cisco I got error from log:
The adaptive security appliance denied any inbound ICMP packet access. By default, all ICMP packets are denied access unless specifically allowed.
I checked around and saw you need to add ACL rules in Cisco, but I did... I dont know what is the problem.