Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
1037
Views
8
Helpful
11
Replies

connect 2 Cisco firepower 1010 nbut no internet

Go to solution
bayuadibwiraprana1
Level 1
Level 1

ā€Ž01-16-2024 05:18 AM

can someone help me,i configure 2 cisco firepower 1010,1 for router and the other for firewall,i can get internet from router device when i plug the rj45 to router,but i cant get internet when i do to firewall,please help me,thank you

Labels:
Preview file
474 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
bayuadibwiraprana1
Level 1
Level 1

ā€Ž01-21-2024 08:12 AM

first of all,thank you for @MHM Cisco World helping and reach out the problem, i already solve the problem,im disable one of nat that cause the problem, 

bayuadibwiraprana1_0-1705853373045.png

outside to firewall 0.0.0.0/0(objamz) to objsrcnet(to one of the host),i cant put the ip  

View solution in original post

0 Helpful
11 Replies 11

Go to solution
MHM Cisco World
VIP
VIP

ā€Ž01-16-2024 06:32 AM

Friend I dont know how you use 192.168.1.0 to access internet' this IP is private IP and not accept in Interent public IP.

MHM 

Go to solution
bayuadibwiraprana1
Level 1
Level 1
In response to MHM Cisco World

ā€Ž01-16-2024 06:39 AM

Its from isp and the isp distribute it to private ip

Go to solution
MHM Cisco World
VIP
VIP
In response to bayuadibwiraprana1

ā€Ž01-16-2024 06:44 AM

Ok' 

Then ISP know only 192.168.1.0 subnet' all other subnet behind Router FW dont know it.

You need then NAT in router FW

note you need acl permit any any from inside zone to outside zone.

MHM

Go to solution
bayuadibwiraprana1
Level 1
Level 1
In response to MHM Cisco World

ā€Ž01-16-2024 07:03 AM

I already give nat and acl, you can see the document that i attach, the is problem when i ping 8.8.8.8 from the cisco firepower 1010(works as firewall) it "request time out" And cant get internet

Go to solution
MHM Cisco World
VIP
VIP
In response to bayuadibwiraprana1

ā€Ž01-16-2024 08:59 AM

let start with FW (router)
you config two interface and I see three ZONE ??
can you more elaborate named the interface and zone you use in FW (router)
thanks 
MHM

Go to solution
bayuadibwiraprana1
Level 1
Level 1

ā€Ž01-16-2024 06:32 PM

okey sir,

FW(router) security zone

bayuadibwiraprana1_0-1705458727914.png

toswitch eth2,inside vlan1,outside eth1

 

 

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to bayuadibwiraprana1

ā€Ž01-16-2024 08:32 PM

from your topology there are two link in FW (router) one to FW and other to internet ?
you need to specify the exact interface and zone in your NAT and ACL 
MHM

Go to solution
bayuadibwiraprana1
Level 1
Level 1

ā€Ž01-16-2024 11:12 PM

sir i screenshot router nat & cl, and firewall nat & acl

Preview file
32 KB
Preview file
30 KB
Preview file
31 KB
Preview file
31 KB
0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to bayuadibwiraprana1

ā€Ž01-17-2024 09:22 AM

I think it easy for both to clarify it in topology 
since I see LAN and toSwitch and OUTside and I dont get for which this interface use 

Screenshot (87).png

Go to solution
bayuadibwiraprana1
Level 1
Level 1

ā€Ž01-21-2024 08:12 AM

first of all,thank you for @MHM Cisco World helping and reach out the problem, i already solve the problem,im disable one of nat that cause the problem, 

bayuadibwiraprana1_0-1705853373045.png

outside to firewall 0.0.0.0/0(objamz) to objsrcnet(to one of the host),i cant put the ip  

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to bayuadibwiraprana1

ā€Ž01-21-2024 08:20 AM

you are so welcome friend 
have a nice day
MHM

Customers Also Viewed These Support Documents