Smart questions
Smart answers
Smart people
INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Member Login
Remember Me
Forgot Password?
Join Us!

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips now!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!
Join Tek-Tips
*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

LINK TO THIS FORUM!

Add Stickiness To Your Site By Linking To This Professionally Managed Technical Forum.
Just copy and paste the
code below into your site.

Tek-Tips LinkedIn® Group

Partner With Us!

"Best Of Breed" Forums Add Stickiness To Your Site
Partner Button
(Download This Button Today!)

Feedback

"...Thank you for the best reply I've ever had to a forum question - it's extremely comprehensive and legible and answers my query thoroughly..."
More...

Geography

Where in the world do Tek-Tips members come from?
Click Here To Find Out!

Tek-Tips Shirts!

Get Tek-Tips Swag
Get your
Tek-Tips Forums
SWAG here!
Home > Forums > Communications Rack > Networking > Cisco: Routers Forum

ASA Not Respoding to Pings

thread557-1686698
Read More Threads Like This One
cisco222 (Vendor)
25 Jun 12 11:32
Hi Guys,

Hope you can point me in the right direction on this.

I'm on a network of 10.0.0.254 ( this is a cisco asa with IPSEC VPN ) and i'm trying to ping the local interface of the end point cisco ASA which is on 10.200.0.254. A server in the same subnet 10.200.0.24 can ping 10.20.0.254 OK. However when i try and ping oven the VPN it says request timed out. The VPN Tunnels are up and i can ping server behind the firewall like 10.200.0.24.

Where is the best place to start looking? would it be my access list or NAT Rules. Any kind of help of this would be great. hope it all makes sense.

Thanks
njjimbo (Vendor)
28 Jun 12 16:18
Try adding:
management-access inside
(assuming your 10.200.0.254 interface is named 'inside')

The ASA is not normally ping-able or manageable on the inside interface over a VPN tunnel without a management-access statement.
cisco222 (Vendor)
17 Jul 12 5:02
thanks for the update.do i need to assign an IP to my management Interface currently i have the below. Please advise


interface GigabitEthernet0/0
nameif inside
security-level 100
ip address 10.200.0.254 255.255.255.0

interface Management0/0
nameif management
security-level 100
no ip address
management-only
njjimbo (Vendor)
31 Jul 12 15:37
You do not need to configure the Management0/0 interface in order to use the 'management-access inside' command.
Read More Threads Like This One

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members!

Back To Forum

Back To Cisco: Routers

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close