So I have configured this in CLI and its not fucking working. I followed the cisco guide here: http://ift.tt/2lYKjNM
One ASA is a brand new 5508-X the other is a older 5510. I upgraded the 5510 to asa916-8-k8.bin this morning.
I have completed the config but any traffic between two end hosts does not work - ie trying to bring the tunnel up with a constant ping. It goes ComputerA(10.9.0.50)->SiteA(172.16.1.1)->SiteB(172.16.1.2)->ComputerB(192.168.0.50). When i do a packet ping from the inside interface of siteA to the computerB ip address it tells me its blocked via a rule but the is only one rule on each which is for example SiteB is this: access-list 100 extended permit ip object 192.168.0.0_24 object 10.9.0.0_24 SiteA would be the subnets in reverse.
My entire team just told me to skip the CLI and use asdm - well i would except when I try to load up asdm client on either firewall it will load maybe 66% of it and quit. Webstart doesnt work at all - basically tells me java isnt installed.
No comments:
Post a Comment