No Internet Access ASA

Home Forums Networking Cisco Security – PIX/ASA/VPN No Internet Access ASA

Viewing 1 post (of 1 total)
  • Author

  • Si_Pe

    Hi all,
    I am missing something really stupid here I think, I have an asa 5505 running 9.1 software, I am trying to use BT infinity broadband with it using an openreach modem connected on port 0. I have tested a direct connect with the openreach modem and the laptop using a pppoe connection and it connects and I can browse the internet ok.
    The only changes I have made to the factory config is below, the ASA can ping google DNS but my laptop cannot get out to the internet.
    I know it is a route issue but I cannot figure out what i need to change. I do not have a static IP from BT so I have left it to ip address pppoe
    Do i need to add a route outside? I have tried this but when I know the ip address the openreach picks up the route outside command fails with “Invalid next hop address, it belongs to one of our interfaces”
    The only changes made to factory config is below.
    hostname ASA-HOME
    enable password *****
    passwd *****
    username Test password ****** privilege 15
    interface Ethernet0/0
    switchport access vlan 2
    interface Ethernet0/1
    interface Ethernet0/2
    interface Ethernet0/3
    interface Ethernet0/4
    interface Ethernet0/5
    interface Ethernet0/6
    interface Ethernet0/7
    vpdn group BT request dialout pppoe
    vpdn group BT localname [email protected]
    vpdn group BT ppp authentication chap
    vpdn username [email protected] password ****
    interface Vlan1
    nameif inside
    security-level 100
    ip address
    interface Vlan2
    nameif outside
    security-level 0
    pppoe client vpdn group BT
    ip address pppoe
    dhcpd dns
    icmp permit any inside
    icmp permit any outside

    I am being stupid here but I can’t see why I can’t add the static route, I have tried to add “ip address pppoe setroute” but I then get an error of no route to host when trying to ping from the ASA.
    Any help would be appreciated.

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.

Don't leave your business open to attack! Come learn how to protect your AD in this FREE masterclass!REGISTER NOW - Thursday, December 2, 2021 @ 1 pm ET

Active Directory (AD) is leveraged by over 90% of enterprises worldwide as the authentication and authorization hub of their IT infrastructure—but its inherent complexity leaves it prone to misconfigurations that can allow attackers to slip into your network and wreak havoc. 

Join this session with Microsoft MVP and MCT Sander Berkouwer, who will explore:

  • Whether you should upgrade your domain controllers to Windows Server
    2019 and beyond
  • Achieving mission impossible: updating DCs within 48 hours
  • How to disable legacy protocols and outdated compatibility options in
    Active Directory

Sponsored by: