Question : Allow new subnet Internet Access through Cisco ASA

I had 3 subnets 192.168.1.0 - 192.168.2.0 - 192.168.3.0 all routed through the iSeries. Today I added subnet 10.x.x.0. Everything works internally but I can not get out to the Internet on subnet 10.x.x.0. I know there is something I need to put in the ASA. It is a 5510. I just do not know what I am missing.

Answer : Allow new subnet Internet Access through Cisco ASA

Ok so look at this:

route Inside 192.168.0.0 255.255.248.0 nameAS4 1
route Inside 192.168.8.0 255.255.255.0 192.168.1.254 1
route Inside 10.153.65.0 255.255.255.0 10.153.65.3 1

and look at this:

interface Ethernet0/1
description Inside LAN Interface
nameif Inside
security-level 100
ip address 192.168.1.20 255.255.255.0

The inside of the ASA is physically on the 192.168.1.0 network. Therefore in order for him to reach any other network he will need to route to the other networks by going to his next hop router to reach the other network. The ASA will need an ip address of a next hop router that is on the network that the ASA is connected to. The next hop router always has to be on the local network. In your route to the 10.x network you pointed the ASA to 10.153.65.3. This address is not local to the ASA. The ASA needs to route to the 192.168.1.x device that will get him to the 10.x network.

Random Solutions

Private IP Security

Why won't Exchange Transport service start in Exchange 2007 on our SBS 2008 server ?

monitor/check all SQL Server backup jobs on all servers

IE8 Submit Form with [Enter] Key, not functioning properly

Windows7 my Documents folder

net share system error 5 acces denied

Coldfusion - SQL syntax

setup Xsan with couple of Apple macs final cut pro

Ex2010 - Move Mailbox Failed - Corrupt Messages

How do I write data to separate excel worksheets in coldfusion?