05-02-2018 03:45 AM - edited 03-05-2019 10:22 AM
Hi,
I would like to ask as I am unable to ping public IP's which is under my Public IP block.
E.g.
Public IP Block 1.1.1.0/26
My public IP 1.1.1.66
Destination public IP 1.1.1.74
unable to ping 1.1.1.74 with source public IP 1.1.1.66
Is there any difference or rule for Public IP's? Because for private IP, logically, I am able to ping an IP w/in my IP block.
Thanks in advance!
Solved! Go to Solution.
05-02-2018 08:37 AM
Hi
Usually the ASA does not allow ICMP, so you could allow icmp-echo or inspect icmp into the global service-policy.
05-02-2018 05:02 AM - edited 05-02-2018 05:02 AM
There is nothing in the RFC that should block this as far as I know.
Is this in a hosted environment or is there any firewalls inbetween?
05-02-2018 05:31 AM - edited 05-02-2018 05:32 AM
Hi
I think your network segment is 1.1.1.64/26, so probably the IP 1.1.1.74 is behind a firewall or restricted from any ACL.
Hope it is useful
:-)
05-02-2018 07:29 AM
05-02-2018 08:37 AM
Hi
Usually the ASA does not allow ICMP, so you could allow icmp-echo or inspect icmp into the global service-policy.
05-03-2018 04:03 AM
05-02-2018 05:34 AM
05-02-2018 07:28 AM
05-02-2018 08:46 AM
try, including ICMP to be inspected by the service-policy on the ASA and allow the echo-reply
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: