cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Welcome to Cisco Firewalls Community


1112
Views
0
Helpful
1
Replies
Highlighted
Enthusiast

ASA inspect icmp error on transparent firewall in multiple mode not supported?

Hi

Did I get this right? The ASA (8.4.2) does not support ICMP error inspection when it runs in multiple mode AND on transparent mode?

When trying to configure it it's realy not there, although the documentation states that it's supported in multiple mode and it's supported in transparent mode.

Any idea on how to bring ICMP "port unreachables" to it's destination? Enabling the corresponding ICMP messages with a firewall ACL-rule doesn't resolve it, as the ICMP messages are dropped with a "no matching connection found" log message.

Kind regards

Roberto

1 REPLY 1
Advocate

ASA inspect icmp error on transparent firewall in multiple mode

Hi Roberto,

Can you tell me the syntax that you are using?? As well as the following output:

show run policy

show run class-map

it should be there.

Thanks,

Varun

Thanks, Varun Rao Security Team, Cisco TAC
CreatePlease to create content
Content for Community-Ad
FusionCharts will render here