Options
Help with asa 5505
BuhRock
Member Posts: 71 ■■□□□□□□□□
So, I'm just brand new to the asa.
I just need a few questions answered. Suppose I just want to set up a simple lab, without internet.
Does the asa 5505 act as a router?
So I'd have an inside and outside interface. The inside being 192.168.1.1 and the outside being 192.168.2.1 ? Then I'd have one machine on each interface, so I'd have a machine 192.168.1.2 and 192.168.2.2. Right now, I've tried making two vlans, assigning the vlan ip of 1.1 and 2.1. The are different security levels, both are up, but I can't ping from host to host. Should I be able to? Can someone help me here?
I just need a few questions answered. Suppose I just want to set up a simple lab, without internet.
Does the asa 5505 act as a router?
So I'd have an inside and outside interface. The inside being 192.168.1.1 and the outside being 192.168.2.1 ? Then I'd have one machine on each interface, so I'd have a machine 192.168.1.2 and 192.168.2.2. Right now, I've tried making two vlans, assigning the vlan ip of 1.1 and 2.1. The are different security levels, both are up, but I can't ping from host to host. Should I be able to? Can someone help me here?
Comments
-
OptionsSecurityThroughObscurity
Member Posts: 212 ■■■□□□□□□□
pinging from outside to inside - you have to explicitly apply an ACL which allow icmp.
pinging from inside to outside - you have to enable ICMP inspection policy-map which keep the state of connection so the returning reply will be allowed to pass asa.
