Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
464
Views
5
Helpful
3
Replies

Okena Strom watch Or Cisco Security agent

p.agrawal
Level 1
Level 1

‎06-23-2003 04:12 PM - edited ‎03-09-2019 03:47 AM

I applied default desktop group and i can not ping or trace route to machine. I can shared drives on that machines from other machines. Security agent is not loging reason of drop. Any Idea which policy--rule causing this?

Thanks

Pradeep

Labels:
0 Helpful
3 Replies 3

r-simpson
Level 3
Level 3

‎06-27-2003 12:02 PM

Have you denied ICMP packets using any access lists??

0 Helpful

psabol
Level 1
Level 1
In response to r-simpson

‎06-27-2003 12:10 PM

During our initial eval of the new CSA product, we encountered the same thing. If I remember correctly it has to do with the network shim. There is a rule in that policy that killed ICMP. HTH.

5mlattimore
Level 1
Level 1

‎07-01-2003 04:08 PM

Hi Pradeep

I had same thing happen to me. heres what I did:

Under Policies:DesktopModulesWindows:Rules:NetworkShield:transport security (I think its rule 214) you will find

Cloak System ..

Simply uncheck this feature

Save and generate new rules

This should allow you to ping or trace route to machine.

We created a simple rule set by copying the Default Desktop

to create a new Cloned Default Desktop

removed all the complex rules and tested

then added rules one by one to get what we wanted

You do not want to run with all these rules in place, it will drive you nuts! lol

Good Luck!

Mike

0 Helpful
Customers Also Viewed These Support Documents