Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
456
Views
0
Helpful
3
Replies

Access List

Raimund Schimanovits
Level 1
Level 1

‎08-30-2016 07:37 AM - edited ‎03-12-2019 01:12 AM

I have a cisco ASA 5506-X and want to ping two host. One on the outside interface and one on the inside interface

When i create an access list and appy to it the deny icmp action did not work. The running ping is still ok.

When i stop the ping and restart it after few seconds the asa blocks the icmp. 

Why did the access list not work after i appy to it?  Only after few seconds and a restart?

Thanks

Labels:
0 Helpful
3 Replies 3

Matias Ortiz
Level 1
Level 1

‎08-30-2016 08:00 AM

0 Helpful

Raimund Schimanovits
Level 1
Level 1
In response to Matias Ortiz

‎08-31-2016 01:29 AM

Is this only for ICMP or should i always inspect to block a traffic for other ports?

0 Helpful

Matias Ortiz
Level 1
Level 1
In response to Raimund Schimanovits

‎08-31-2016 07:08 AM

Hi Raimund Schimanovits, Only for ICMP, if you match correctly source and destination on the ACL, this should work. Also, you can check with packet tracer if traffic is matching with ACL.

Regards.-

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card