[c-nsp] ASA 5505 doesn't like itself
Michael Loether
mike at azloether.com
Tue Feb 22 10:03:52 EST 2011
On Feb 17, 2011, at 5:10 PM, Ryan West wrote:
> Can you post the show runs for the NAT, ACL, access-groups, and interfaces?
Interfaces:
interface Vlan1
nameif inside
security-level 100
ip address 172.19.1.1 255.255.255.0
!
interface Vlan2
nameif outside
security-level 0
ip address 64.183.175.22 255.255.255.252
!
interface Ethernet0/0
switchport access vlan 2
!
interface Ethernet0/1
!
ACL:
access-list inside_access_in extended permit icmp any any
access-list inside_access_in extended permit ip any any
access-list outside_access_in extended permit ip any any
access-list outside_access_in extended permit icmp any any
access-list outside_access_in extended permit tcp object-group AWC-Outside 64.183.175.20 255.255.255.252 eq ssh
access-list outside_access_in extended permit udp object Orion object AWC-YRMC-LLC-Outside eq snmp
NAT
nat (inside,outside) source dynamic any interface
Mike
More information about the cisco-nsp
mailing list