The Access Problem Between the USG and the ASA Through the IPSec Tunnel

Publication Date:  2012-07-24 Views:  144 Downloads:  0
Issue Description
Interfaces on Cisco firewall are allocated with corresponding security levels. To facilitate management, the security level of the extranet is set to 100. As a result, though telnet connections can be established, background servers cannot be pinged.
 
Alarm Information
None
Handling Process
1.       View the configuration of the interface on Cisco firewall:
Show interface gi0/0/0
2.       Enter the interface view:
Interface gi0/0/0
3.       Modify the security level of the interface as 0:
Security-level 0
4.       Ping background servers successfully.
Root Cause
Interfaces on Cisco firewall are allocated with corresponding security levels. To facilitate management, the security level of the extranet is set to 100. As a result, though telnet connections can be established, background servers cannot be pinged.
Suggestions
None

END