Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1182
Views
0
Helpful
1
Replies

ASA 5505 disable ping reply

casternj1
Level 1
Level 1

‎06-01-2007 05:38 AM - edited ‎03-11-2019 03:23 AM

when my pix failed I switch over rapidly to a asa 5505

two of my external ip address say 1.1.1.x and 1.1.1.y are replying to ping replies from the internet. one address is used in my outside interface and the other is used in my route outside command

interface Vlan2

nameif outside

security-level 0

ip address 1.1.1.x 255.255.x.y

te outside 0.0.0.0 0.0.0.0 1.1.1.y 1

Labels:
0 Helpful
1 Reply 1

Jon Marshall
Hall of Fame
Hall of Fame

‎06-03-2007 12:22 AM

Hi

For your asa you need to deny ping replies from the outside interface. Attached is a link that explains how the asa responds to ping and how to deny it

http://www.cisco.com/en/US/products/ps6120/products_command_reference_chapter09186a008063f9fd.html#wp1631466

As for the 1.1.1.y that is presumably the upstream router from your asa. There is nothing you can do on the asa to stop this responding to pings. You need to log onto the router and use an access-list to prevent this happening

The router might be managed by your ISP. If so you need to talk to them but they may well require it for troubleshooting purposes.

HTH

Jon

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card