Menu Title

Traffic between ASA interfaces of same security level

Error: Deny inbound UDP from 192.168.109.77 to 8.8.8.8/53 due to DNS query This problem occurs when you have configured 2 or more interfaces of Cisco ASA with same security-level. In such case, you need to configure and allow traffic between them. (config)# same-security-traffic permit inter-interface You can also perform the same section via ASDM. Continue Reading

Cisco ASA cannot ping any hosts on outside

Out of the box Cisco ASA firewall doesn't permit ICMP traffic, that means the firewall permits ping traffic out but it won't let the reply traffic to come inside. The solution is to add "inspection icmp" to global policy map ASA(config)# policy-map global_policy ASA(config-pmap)# class inspection_default ASA(config)# inspect icmp ASA(config)# exit ASA# write memory After Continue Reading