09-30-2008 01:51 PM - edited 03-11-2019 06:51 AM
Hi, We have ASA 5505 installed in Production and I want to add ICMP in default_inspection but when I execute sh run command then I don't see any default_inspection rule. Please advice
09-30-2008 03:30 PM
there should be class inspection default under global_policy
do
fw#show run | inc class inspection_default
output of above should be class inspection_default if no output then
create one, but again class inspection_default should be there in global policy as
all protocol inspection is under this global policy that cames as default.
fw(config)#policy-map global_policy
fw(config-pmap)#class inspection_default
fw(config-pmap-c)#inspect icmp
fw(config-pmap-c)#end
fw#wr mem
Rgds
Jorge
09-30-2008 03:42 PM
Well I checked but not found so I added manually.
10-01-2008 01:50 PM
Richard, glad is resolved, and as usual PLS contribute the good netpro cause in rating helpful posts.
Bst Rgds
Jorge
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide