Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2018
Views
0
Helpful
1
Replies

ASA Management Access & ICMP Rule

QUARK TARO
Level 1
Level 1

‎04-12-2017 05:42 AM - edited ‎03-12-2019 02:12 AM

I have defined the list of devices which require management access to ASA under Device Management -> ASDM/HTTPS/Telnet/SSH

There is also a section called "Management Access rule" under Device Management. Is it necessary to configure the setting under this?


Also under Device Management -> ICMP, I beleive this allows me to ping the firewall interfaces. By default I have not defined anything but still I am able to ping the firewall interfaces. Is it normal?

Labels:
0 Helpful
1 Reply 1

tavkaur
Level 1
Level 1

‎04-14-2017 06:35 PM

Hi,

++ The management access rules are used to permit/deny to-the-box traffic. So if in case you want to block or allow certain users for management access of the box, you can create a rule in this section

++ In your case you have listed the device for management access so there is no need to configure any management access rule

++ Under Device Management --> ICMP, you can control ICMP traffic that terminates on the ASA interface. However, if no ICMP control list is configured, the by default ASA allows to-the-box icmp traffic.

Regards,

Tavleen

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card