We had an issue in SSH to Cisco ASA firewall that was recently purchased and setup in network. While troubleshooting further, we could see some error logs in ASDM as SSH session from 192.168.109.77 on interface inside for user "Unknown" disconnected by SSH server, reason: "Internal error" (0x00) This was caused by Continue Reading
Traffic between ASA interfaces of same security level
Error: Deny inbound UDP from 192.168.109.77 to 8.8.8.8/53 due to DNS query This problem occurs when you have configured 2 or more interfaces of Cisco ASA with same security-level. In such case, you need to configure and allow traffic between them. (config)# same-security-traffic permit inter-interface You can also perform the same section via ASDM. Continue Reading
Cisco ASA cannot ping any hosts on outside
Out of the box Cisco ASA firewall doesn't permit ICMP traffic, that means the firewall permits ping traffic out but it won't let the reply traffic to come inside. The solution is to add "inspection icmp" to global policy map ASA(config)# policy-map global_policy ASA(config-pmap)# class inspection_default ASA(config)# inspect icmp ASA(config)# exit ASA# write memory After Continue Reading