Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
311
Views
0
Helpful
3
Replies

Trace result with PIX

prasadkrishna
Level 1
Level 1

‎03-20-2005 01:11 PM - edited ‎02-21-2020 12:01 AM

The Trace from the internal network does not show the inside interface in the hops. The first hop is the internal Firewall and the second is the perimeter router connected to the Outside interface.

Can anybody clarify on this ??

0 Helpful
3 Replies 3

Patrick Iseli
Level 7
Level 7

‎03-21-2005 05:04 AM

Does that device allow ICMP and which icmp commands ? Do we talk about a PIX or an IOS Firewall ?

For PIX:

Handling ICMP Pings with the PIX Firewall

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a0080094e8a.shtml

The PIX and the traceroute Command

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a00800e9312.shtml

sincerely

Patrick

0 Helpful

prasadkrishna
Level 1
Level 1
In response to Patrick Iseli

‎03-22-2005 12:59 AM

Yes. The device allows ICMP. Im talking of the PIX ver6.3

infact im able to do a PING and Trace from the inside host to the outside network.

Regards

Prasad

0 Helpful

Patrick Iseli
Level 7
Level 7
In response to prasadkrishna

‎03-22-2005 05:59 AM

To ping or trace the from the inside network to the inside interface you need to configure the "ICMP" command.

example:

ICMP command example

icmp deny any outside

icmp permit any echo-reply outside

icmp permit any echo-reply inside

icmp permit host 192.168.1.30 echo inside

icmp permit host 192.168.1.31 echo inside

icmp permit host 192.168.1.20 echo inside

icmp permit host 192.168.1.40 echo inside

icmp permit host 192.168.1.100 echo inside

sincerely

Patrick

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card