04-04-2008 09:53 AM - edited 03-03-2019 09:25 PM
Here is my situation:
- have MPLS Network with 6 locations
- main router (10.20.0.1) ASA 5510
From the main router I can ping all other routers, None of the other routers can ping the main router. But all of the other routers can ping each other.
I tried to add the following line to the asa device "access-list INSIDE_ACCESS_OUT line 11 permit icmp host 10.20.0.1 any"
Please help....
04-04-2008 02:21 PM
Duke:
I have never worked with an ASA 5510, but I will treat it like a PIX, OK?
I am imagining that the remote routers sit behind the OUTSIDE (untrusted) interface of the ASA and so you have to specifically allow ICMP packets to enter the interface.
Something along the lines of 'permit icmp any 10.20.0.1'
It seems like you did it in the reverse.
Dont know if I am missing something obvious...
04-05-2008 11:19 PM
Thanks,
I will give it a try.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide