![]() ![]() ![]() Same-security-traffic permit intra-interface Same-security-traffic permit inter-interface When i do a show conn, this is what i get: I assigned public DNS to the test PC and that is unable to get out. I have set up a PC there with the same access list for testing purposes. Unfortunately, I cannot assign DNS manually, it only accepts DHCP. I can ping the outside world from the ASA itself. All traffic is TCP.Īny help would be greatly appreciated. According to the manufacturer, only outbound connections are needed, no incoming ports required. When I do a show conn I'm seeing one of the IP's that the phone should have access to, however the flags are: saA, so I'm assuming they are not getting a response. When I do a show access-list I'm seeing that traffic is hitting the access list as the hit counter has increased. The access list I wrote is:Īccess-list 101 extended permit ip host .124 any logĪccess-list 101 extended permit ip any any For now I wrote an access list to allow it's DHCP address out but it still isn't working. The phone only supports DHCP, and getting the ASA to do an ARP reservations is proving difficult. We have a person who works in the remote office who has need for a caption telephone that requires direct access to the internet. The ASA's we are using is for VPN to our corporate office and only allowing access to our Citrix environment, so no direct internet allowed. Let me start by saying that I'm just starting to study for CCNA, so the ASA seems to be a bit above me yet.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |