Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > General Computer Discussion > General Computer Support > Csico ASA 5505 not connecting to the Internet

Thread Tools

Csico ASA 5505 not connecting to the Internet

Izoj Izoj is offline
Junior Member
Join Date: Dec 2010
Posts: 1

A small company has one public IP address for Internet access. Currently they are using a Cisco router 800 series; there is a local DNS machine with a private IP address with forwarder IP address pointing to the ISP's DNS box.

Here is the simple basic ASA 5505 config:

ASA Version 7.2(4)
hostname myhost
enable password ************ encrypted
passwd *********** encrypted
name 192.168..u.p int_dns
name h.i.j.q portal_out
interface Vlan1
nameif inside
security-level 100
ip address
interface Vlan2
nameif outside
security-level 0
ip address a.b.c.d 255.255.255.r
interface Vlan3
nameif dmz
security-level 50
ip address dhcp
interface Ethernet0/0
switchport access vlan 2
interface Ethernet0/1
interface Ethernet0/2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
ftp mode passive
dns server-group DefaultDNS
same-security-traffic permit inter-interface
same-security-traffic permit intra-interface
!Allow ping from inside to outside
access-list ACL_OUT extended permit icmp any any echo-reply
access-list ACL_OUT extended permit icmp any any source-quench
access-list ACL_OUT extended permit icmp any any unreachable
access-list ACL_OUT extended permit icmp any any time-exceeded
access-list ACL_OUT extended deny icmp any any
pager lines 24
logging enable
logging asdm informational
mtu inside 1500
mtu outside 1500
mtu dmz 1500
no failover
monitor-interface inside
monitor-interface outside
monitor-interface dmz
icmp unreachable rate-limit 1 burst-size 1
asdm image disk0:/asdm-524.bin
no asdm history enable
arp timeout 14400
global (outside) 1 interface
nat (inside) 1
access-group ACL_OUT in interface outside
route outside x.y.z.k 1
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
http server enable
http inside
http 192.168.1.g inside
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
!Allow telnet and ssh within and to ASA and RTR
telnet inside
telnet x.y.w.k inside
telnet a.b.c.d inside
telnet timeout 5
ssh inside
ssh timeout 5
console timeout 0
dhcpd auto_config outside
dhcpd address inside
dhcpd enable inside

prompt hostname context
: end
asdm image disk0:/asdm-524.bin
no asdm history enable

Result: cant browse the net!!!

Where did i go wrong? Any advice - appreciated

Reply With Quote

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
ASA 5505 cannot ping Internet hosts by name? gipper Cisco 7 10-21-2011 04:49 PM
ASA 5550 behind ASA 5505 Dogg Child Cisco 4 06-08-2010 06:56 PM
Re: ASA 5505 behind ASA 5505 Dogg Child Cisco 0 06-07-2010 12:13 PM
Cisco ASA 5505 with two internet connections; publish a mail server. Darth T Cisco 0 06-04-2008 02:37 AM
ASA 5505 as hardware vpn client to PIX 501 or ASA 5505 with network extension mode activated Cisco 1 06-17-2007 12:43 PM