We recently implemented a firepower 1140 running 7.0.1-84. We would like to allow host on our inside network to ping & tracert a host on our DMZ, and vice versa. Our DMZ and inside network have dedicated interface on the firepower. when I create an ACL to allow this traffic, ICMP, echo, and TTL are not listed.
How can I make these available to allow icmp to specific host on these interfaces?
thank you.
