EasyManuals Logo

Cisco 5510 - ASA SSL / IPsec VPN Edition Configuration Guide

Cisco 5510 - ASA SSL / IPsec VPN Edition
1822 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #1694 background imageLoading...
Page #1694 background image
76-2
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 76 Troubleshooting
Testing Your Configuration
The diagram should also include any directly connected routers, and a host on the other side of the router
from which you will ping the adaptive security appliance. You will use this information in this procedure
and in the procedure in the “Passing Traffic Through the Adaptive Security Appliance” section on
page 76-3. For example:
Figure 76-1 Network Diagram with Interfaces, Routers, and Hosts
Step 2
Ping each adaptive security appliance interface from the directly connected routers. For transparent
mode, ping the management IP address. This test ensures that the adaptive security appliance interfaces
are active and that the interface configuration is correct.
A ping might fail if the adaptive security appliance interface is not active, the interface configuration is
incorrect, or if a switch between the adaptive security appliance and a router is down (see Figure 76-2).
In this case, no debug messages or syslog messages appear, because the packet never reaches the
adaptive security appliance.
Figure 76-2 Ping Failure at the Adaptive Security Appliance Interface
If the ping reaches the adaptive security appliance, and it responds, debugging messages similar to the
following appear:
ICMP echo reply (len 32 id 1 seq 256) 209.165.201.1 > 209.165.201.2
ICMP echo request (len 32 id 1 seq 512) 209.165.201.2 > 209.165.201.1
Routed Security
Appliance
10.1.1.56 10.1.3.6209.265.200.230
10.1.2.90 10.1.4.6710.1.0.34
209.165.201.24
10.1.1.5
Transp. Security
Appliance 10.1.0.3
Host
Host
10.1.1.2
192.168.1.2
209.265.200.226
209.165.201.2
10.1.3.2
192.168.3.2
192.168.2.2
10.1.2.2
192.168.0.2
10.1.0.2
192.168.4.2
10.1.4.2
dmz1
192.1
68.1.
outside
209.165.201.1
security0
inside
192.168.0.1
security100
209.165.201.1
10.1.0.1
10.1.0.2
10.1.1.1
outside
security0
inside
security100
dmz2
192.168.2.1
security40
dmz3
192.1
68.3.
dmz4
192.168.4.1
security80
126692
Host
Host
Host
Host
Host
Host
Router
Router Router
Router
Router Router
Router
Router
Ping
Security
Appliance
Router
126695

Table of Contents

Other manuals for Cisco 5510 - ASA SSL / IPsec VPN Edition

Preview: Cli Configuration Guide
Cli Configuration Guide2164 pages
Preview: Hardware Installation Guide
Hardware Installation Guide82 pages
Preview: Getting Started Guide
Getting Started Guide208 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco 5510 - ASA SSL / IPsec VPN Edition and is the answer not in the manual?

Cisco 5510 - ASA SSL / IPsec VPN Edition Specifications

General IconGeneral
BrandCisco
Model5510 - ASA SSL / IPsec VPN Edition
CategoryFirewall
LanguageEnglish

Related product manuals