Question

Locked

cannot access DNS from internal on Cisco ASA 5520

By rmp.dmd1229 ·
Hi,

We're using Cisco ASA 5520.

I have set-up the following interface

outside: 172.20.55.240 (security:0)
zone1: 192.10.10.1 (security: 100)

i have a server 192.10.10.21 that I need to allow external DNS access

I have a static NAT
source: 192.10.10.21
NAT: 172.20.55.240
service 53 (TCP and UDP)

and FW rule
allow source 192.10.10.21 to any for service 53 (TCP and UDP)

however this is not working.

Are there more configuration required?

thanks!

This conversation is currently closed to new comments.

2 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Answers

Collapse -

cannot access DNS from internal on Cisco ASA 5520

by rmp.dmd1229 In reply to cannot access DNS from in ...

anyone please

Collapse -

A shot in the dark

by NetMan1958 In reply to cannot access DNS from in ...

Do you have an access-list applied to the outside interface for inbound traffic? If so, does it allow DNS replies in? If it doesn't and/or you don't have an access-list on that interface, are you inspecting DNS traffic in the outbound direction so that it will dynamically allow it back in?

Back to Networks Forum
2 total posts (Page 1 of 1)  

Related Forums