Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
605
Views
0
Helpful
1
Replies

Can't PING IP Address Route Firewall?

williammanurung
Level 1
Level 1

‎10-02-2017 04:10 AM - edited ‎02-21-2020 06:24 AM

Hai guys,

 

I have asa with routed firewall mode.

and i have configured interface like this:

 

interface Port-channel2.3111
 nameif OUTSIDE
 security-level 0
 ip address 1.1.1.1 255.255.255.0 standby 1.1.1.2

 


And what i still confused is, why 1.1.1.1 or 1.1.1.2 cannot ping from different segment?
I have no problem with routing in firewall

Labels:
0 Helpful
1 Reply 1

Flavio Miranda
VIP
VIP

‎10-02-2017 05:49 AM

Hello,

 For security reason.  When ping is disabled, a bunch of  malicious tools can´t track you.

 You can try enablig inspection and also permiting icmp.

 

policy-map global_policy
class inspection_default
inspect dns migrated_dns_map_1
inspect icmp

 

permit icmp OUTSIDE in

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card