Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1468
Views
0
Helpful
1
Replies

ASA inspect icmp error on transparent firewall in multiple mode not supported?

ROBERTO GIANA
Level 4
Level 4

‎10-13-2011 08:01 AM - edited ‎03-11-2019 02:37 PM

Hi

Did I get this right? The ASA (8.4.2) does not support ICMP error inspection when it runs in multiple mode AND on transparent mode?

When trying to configure it it's realy not there, although the documentation states that it's supported in multiple mode and it's supported in transparent mode.

Any idea on how to bring ICMP "port unreachables" to it's destination? Enabling the corresponding ICMP messages with a firewall ACL-rule doesn't resolve it, as the ICMP messages are dropped with a "no matching connection found" log message.

Kind regards

Roberto

Labels:
0 Helpful
1 Reply 1

varrao
Level 10
Level 10

‎10-13-2011 08:33 AM

Hi Roberto,

Can you tell me the syntax that you are using?? As well as the following output:

show run policy

show run class-map

it should be there.

Thanks,

Varun

Thanks,
Varun Rao
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card