Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
642
Views
5
Helpful
1
Replies

PIX Access-List Troubles

Go to solution
micahbarsness
Level 1
Level 1

‎06-03-2013 08:16 AM - edited ‎03-11-2019 06:52 PM

Hello everyone.

I need to be able to ping from my internal network to the outside firewall port. At this point I can ping the inside just fine. When I ping from the computer to the outside firewall port I can see it registering on the firewall console in putty. But on the PC it comes back as request time out. I know I need to update the Access-list, im just not sure what command to use.

Thanks!

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jouni Forss
VIP Alumni
VIP Alumni

‎06-03-2013 08:26 AM

Hi,

You are not able to PING/ICMP the "outside" interface of the PIX from a host behind the "inside" interface. This is true for any Cisco firewall to my understanding.

The host sending ICMP Echo to an PIX interface IP address has to always be behind that interface. Basically hosts behind "inside" can PING the "inside" inteface IP address and hosts behind "outside" can PING the "outside" interface.

- Jouni

View solution in original post

1 Reply 1

Go to solution
Jouni Forss
VIP Alumni
VIP Alumni

‎06-03-2013 08:26 AM

Hi,

You are not able to PING/ICMP the "outside" interface of the PIX from a host behind the "inside" interface. This is true for any Cisco firewall to my understanding.

The host sending ICMP Echo to an PIX interface IP address has to always be behind that interface. Basically hosts behind "inside" can PING the "inside" inteface IP address and hosts behind "outside" can PING the "outside" interface.

- Jouni

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card