Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1981
Views
0
Helpful
2
Replies

Allow ping using Pix

manuitpro
Level 1
Level 1

‎11-13-2006 12:42 AM - edited ‎03-11-2019 01:56 AM

I have configured pix firewall, but is is not allowing me to ping internet websites. I want to allow ping from LAN to Internet. I have created access list to allow ping from my LAN to ANY. When i try ping www.yahoo.com it is resolving ip but saying request time out as shown below.

Pinging www.yahoo-ht2.akadns.net [209.191.93.52] with 32 bytes of data:

Request timed out.

Request timed out.

My internal ip is xx.xx.1.1

External Ip is xx.xx.7.1

Please help me to solve this problem.

Thanks in advance.

Labels:
0 Helpful
2 Replies 2

a.kiprawih
Level 7
Level 7

‎11-16-2006 08:45 PM

Since you managed to resolve the url/server name to IP, this indicate that the DNS resolution works fine.

To really test & verify ping/icmp, try to ping to many sites/servers/IPs. Pinging to one site/server might not be accurate.

Also, make sure (IF) you have ACL applied on the Inside interface, to permit icmp, example, permit any any for testing purposes:

*add to your inside ACL

access-list inside permit icmp any any

access-group inside in interface inside

Make sure no ACL blocking icmp traffic on your internet router.

BTW, is:

My internal ip is xx.xx.1.1 --> private IP on Inside interface

External Ip is xx.xx.7.1 --> public IP on Outside interface

HTH

AK

0 Helpful

t-heeter
Level 1
Level 1

‎11-17-2006 05:56 AM

You have to allow the reply on outside interface.

access-list 101 permit icmp any any echo-reply

access-group 101 in interface outside

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card