Re: Inside hosts loses connection to the Internet - ASA5505


Again, I appologize about the license! I got to stop replying to posts when I'm exhausted!

Your config looks just fine, not seeing anything shy of the default setting for the DNS MTU. Using 512 can cause DNS querries to fail I always set it to 4092. A "show service-policy" will let you know how many drops you have had. To change that setting:
conf t
policy-map type inspect dns preset_dns_map
parameters
message-length maximum 4092

Back to your original issue. XX host cannot go to the internet. When this host drops, can you ping the firewall? Do you have an internal router inside as well? If so, can the user ping that? Next time it happens upen up ASDM, go in to logging, use debug packets and filter to that specific host, see what the logs say.

About your other post. 7.2(2), while there is "newer" software, 7.2(2) is actually a very stable release, running in 100's of our customers. 7.2(3) is the latest in the 7X train, thats still too new for us to roll to our customers, we have a 90day policy unless they are experiencing issues that the release will fix.



Hi Brian, thank you for your reply.

When the host loses Internet it can not ping the firewall. All the others can. Next time I will look at the log om the firewall - great idea.

I do not have any internal routers.

My network is build up with 6 c2960 cisco switches, but the hosts Internet is down no matter what switch I connect it to.

But when an hour is gone (and an host restart) the host's Internet is back.

Are there any thing I should check on the switches?

Best regards
Martin




.

Relevant Pages

  • XP DNS stopped working?
    ... Since then, it has been impossible to access the internet with IE or OE: page not found, server not found etc. ... All other PCs connected to the router continue to function normally. ... The DNS server addresses in the PC are fine. ... Going back to the DNS failure, I put a valid host entry in the hosts file, and it was possible to access the host using its FQDN. ...
    (microsoft.public.windowsxp.network_web)
  • Re: Internal sites
    ... Ok these external sites are sitting on a DNS server at ... So how do I get another IP for me to use or HOST resolution ... >>configure a DNS server internally without the internet ... >headers. ...
    (microsoft.public.inetserver.iis)
  • Re: static ip address and ifconfig
    ... ISP for home users having dsl or tv cable internet connections. ... FQDN will no longer point to the correct host. ... Do you understand the different types of DNS records? ... address or some other DHCP option. ...
    (freebsd-questions)
  • Re: Domain Name, but manage my own DNS ??
    ... > If I buy a Domain Name is it possible for me to control my own DNS on ... > my Win 2003 Server. ... > internet users have access. ... If different name, you can host it on the same machine, but the problem ...
    (microsoft.public.win2000.dns)
  • Re: Urgent! New router and big disaster
    ... Both NICs should point to his internal IP for DNS. ... forward ports to it reliably in the router. ... I should have been more clear about internet connection.. ...
    (microsoft.public.windows.server.sbs)