1. Home
  2. Cisco Systems
  3. 5510 + ssh + https

5510 + ssh + https

I'm having several problems setting up a 5510 and was hoping someone could take a look for me.

I can't communicate from any of my machines on any of these interfaces, nor can I ping the interfaces from any of the network hosts.

All I really care about for now is communicating via ssh between the interfaces and having machines from the outside interface hit my dmz via www/https.

Any help much appreciated.

-------------------------------------------------

5510(config)# write t : Saved : ASA Version 7.0(7) ! hostname 5510 enable password 8Ry2YjIyt7RRXU24 encrypted names dns-guard ! interface Ethernet0/0 nameif outside security-level 0 ip address xxx.xxx.xxx.xxx 255.255.255.0 ! interface Ethernet0/1 nameif dmz security-level 20 ip address 192.168.4.1 255.255.255.0 ! interface Ethernet0/2 nameif cluster security-level 60 ip address 192.168.2.1 255.255.255.0 ! interface Ethernet0/3 nameif development security-level 60 ip address 192.168.3.1 255.255.255.0 ! interface Management0/0 nameif management security-level 100 ip address 192.168.1.1 255.255.255.0 management-only ! passwd 2KFQnbNIdI.2KYOU encrypted ftp mode passive access-list 105 extended permit ip interface development interface outside pager lines 24 logging asdm informational mtu management 1500 mtu dmz 1500 mtu cluster 1500 mtu outside 1500 mtu development 1500 no failover asdm image disk0:/asdm-507.bin no asdm history enable arp timeout 14400 static (development,dmz) 192.168.3.0 192.168.3.0 netmask 255.255.255.0 static (cluster,dmz) 192.168.2.0 192.168.2.0 netmask 255.255.255.0 static (dmz,outside) 192.168.4.0 192.168.4.0 netmask 255.255.255.0 static (development,outside) 192.168.3.0 192.168.3.0 netmask 255.255.255.0 static (cluster,outside) 192.168.2.0 192.168.2.0 netmask 255.255.255.0 timeout xlate 3:00:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02 timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 timeout mgcp-pat 0:05:00 sip 0:30:00 sip_media 0:02:00 timeout uauth 0:05:00 absolute http server enable http 192.168.1.0 255.255.255.0 management no snmp-server location no snmp-server contact snmp-server enable traps snmp authentication linkup linkdown coldstart telnet timeout 5 ssh timeout 5 console timeout 0 dhcpd address 192.168.1.2-192.168.1.254 management dhcpd lease 3600 dhcpd ping_timeout 50 dhcpd enable management ! class-map inspection_default match default-inspection-traffic ! ! policy-map global_policy class inspection_default inspect dns maximum-length 512 inspect ftp inspect h323 h225 inspect h323 ras inspect rsh inspect rtsp inspect esmtp inspect sqlnet inspect skinny inspect sunrpc inspect xdmcp inspect sip inspect netbios inspect tftp ! service-policy global_policy global Cryptochecksum:f5126e5ab70c42f5150fb863981ba387 : end [OK]
Reply to
Jake
Loading thread data ...

Reply to
Jake

| I'm having several problems setting up a 5510 and was hoping someone | could take a look for me. | | I can't communicate from any of my machines on any of these interfaces, | nor can I ping the interfaces from any of the network hosts. | | All I really care about for now is communicating via ssh between the | interfaces and having machines from the outside interface hit my dmz | via www/https. | | Any help much appreciated.

Use the packet tracer to see what the problem is. From what I can see you don't have appropriate access lists to let the traffic you need through.

Reply to
Morph

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.