Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
448
Views
5
Helpful
1
Replies

Unable to ping to public addresses from inside the firewall

shakthidharan
Level 1
Level 1

‎12-07-2002 08:16 AM - edited ‎03-09-2019 01:19 AM

We use a Cisco PIX firewall. But strangely, I am not able to ping to any of the public ip address from inside the firwall! ( This includes my own router which is on the outside of the pix and has a valid IP.

To my knowledge there is no restricting icmp traffic from inside.

Anyidea what can cause this? I want the inside users to be able to ping any outside address but not the vice versa.

Shakthi...

Thanks

Labels:
0 Helpful
1 Reply 1

jekrauss
Level 1
Level 1

‎12-07-2002 10:16 AM

By default, icmp echo-requests are permitted outbound through the firewall to your perimeter router, but, also by default, the echo-replies are not permitted.

Consequently, if you have an ACL applied to your outside interface, then add an entry permitting echo-replies.

i.e.

access-list acl_outside permit icmp any any echo-reply

access-group acl_outside in interface outside

Jeff

Customers Also Viewed These Support Documents