Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
388
Views
5
Helpful
4
Replies

PIX 506e, need help!!!!

Dale_Bosley
Level 1
Level 1

‎08-11-2004 10:16 AM - edited ‎02-20-2020 11:33 PM

I can't get the firewall to stop responding to pings, I have put in the following line of code.

access-list outside_access_in deny icmp any any

The firewall continues to repond to pings. What am I not doing?

0 Helpful
4 Replies 4

paddyxdoyle
Level 6
Level 6

‎08-11-2004 10:46 AM

Hi,

This access-list will stop ICMP that's being routed through the firewall only.

If you want to disable it from the outside interface then you need to enter :

"icmp deny any outside"

Rgds

Paddy

Dale_Bosley
Level 1
Level 1
In response to paddyxdoyle

‎08-11-2004 11:12 AM

Thank you very much for your reply. Is that the line of code that I put in or do I just change the end of my access-list line so that it reads

access-list outside_access_in deny icmp any outside

thanks again

0 Helpful

eleibowitz
Level 1
Level 1
In response to Dale_Bosley

‎08-11-2004 11:31 AM

Put it in exactly as Paddy showed at the config prompt:

pixfirewall(config)# icmp deny any any

You can also specify an interface. For example, if you want to allow ping from the inside and deny it from the outside (to the "outside" interface), use:

pixfirewall(config)# icmp deny any outside

0 Helpful

scoclayton
Level 7
Level 7
In response to eleibowitz

‎08-11-2004 11:46 AM

It is important to remember that access-lists only apply to traffic that goes *through* the box. Traffic destined *to* the box is never processed via the ACL's applied to the interfaces.

Scott

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card