Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
240
Views
0
Helpful
2
Replies

ICMP pings from the inside, from an outside subnet!

ipcruiser81
Level 1
Level 1

‎02-13-2014 09:34 AM - edited ‎03-07-2019 06:11 PM

Hi!

Lost on this one.

SVI L3 interface configured with inbound and outbound ACLs.

On inbound ICMP ACL, ICMP packets are logged from a source that doesn't belong to the subnet that is being controlled! Anyone know what's happening? Thanks in advance!

Feb 13 01:12:17 aswitch 1318027 Feb 13 01:12:16.515 UTC: %SEC-6-IPACCESSLOGDP: list ACL-control-in permitted icmp 172.28.202.78 -> 172.30.253.97 (8/0), 1 packet

Labels:
0 Helpful
2 Replies 2

Jon Marshall
Hall of Fame
Hall of Fame

‎02-13-2014 09:37 AM

Might help if you posted config ie. the acls and the SVI config ?

Then again might not but it's a bit difficult to tell with what we have at the moment

Jon

0 Helpful

John Blakley
VIP Alumni
VIP Alumni

‎02-13-2014 09:38 AM

Are you saying that you're supposed to be blocking the subnet 172.28.202.x from being able to ping, but the acl is allowing it? Can you post your acl and the interface config that the acl is tied to?

HTH,
John

*** Please rate all useful posts ***

HTH, John *** Please rate all useful posts ***
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card