Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1459
Views
0
Helpful
5
Replies

Router recieving pings but not responding?

K-Grev
Level 1
Level 1

‎04-19-2021 03:35 PM

Hi all,

 

I have an ASR901 that is showing as "Down" from my Solarwinds server. From my server, I can putty into the device but I cannot ping it.

 

If I do a "debbug ip icmp" I can see the router showing this:

ICMP: echo reply rcvd, src 10.2.2.90, dst 10.2.5.113, topology BASE, dscp 0 topoid 0

 

It does not show a "SENT" like when I ping it from my desktop:

ICMP: echo reply sent, src 10.2.5.113, dest 10.2.102.231

 

That is the only evidence that there was a ping. There is another ASR901 at ip 10.2.5.107 that is working fine. It shows recieved and sent when I ping it from solarwinds. The ACL's in the devices along the path allow the entire subnet and are not logging a deny for this traffic.

 

Any helpful advice into troubleshooting this would be greatly appreciated.

My work laptop has usb blocked so I cannot get you a backup of the device.

Labels:
0 Helpful
5 Replies 5

MHM Cisco World
VIP
VIP

‎04-19-2021 05:58 PM

10.2.5.113 is your ASR IP ?
in the First Ping 
Server - ASR 
ASR is receive the ping Echo Reply so the ACL Inbound accept the Ping Echo Reply

in PC-ASR 
ASR is send the ping Echo Reply so the ACL Inbound accept the Ping Echo 

But the Subnet you use for both Server and PC is different ???

So I worried about the FW, Why because the FW in case of the Server-ASR is only accept the return back traffic if the traffic is initiate  from it INISDE interface "more secure". BUT FW will not accept traffic initiate from OUTSIDE interface "Low Secure".

0 Helpful

Richard Burts
Hall of Fame
Hall of Fame
In response to MHM Cisco World

‎04-20-2021 12:26 AM

I agree that clarification of the addressing of the server, of the router, and of the PC would be helpful. 

 

I am surprised by this debug output

ICMP: echo reply rcvd, src 10.2.2.90, dst 10.2.5.113

I would expect to see echo request received. Why is the router receiving echo reply?

HTH

Rick
0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎04-20-2021 07:15 AM

Can you post the configruaiton, i am thinking there may be ACL which blocking pings, since you confirmed SSH works ok

 

but this is just assumptions, once we have config, we can confirm what is wrong ?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

paul driver
VIP
VIP

‎04-20-2021 08:16 AM - edited ‎04-20-2021 08:16 AM

Hello
Disable any software firewall on the server and test again, as by default icmp echo-reply would be denied if enabled, Long term if software firewall is required create policy to allow echo-reply


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

Richard Burts
Hall of Fame
Hall of Fame
In response to paul driver

‎04-20-2021 01:34 PM

I am thinking about the message

echo reply rcvd, src 10.2.2.90, dst 10.2.5.113,

can you clarify what is 10.2.2.90 and what is 10.2.5.113?

HTH

Rick
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card