cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
160
Views
0
Helpful
2
Replies

ICMP pings from the inside, from an outside subnet!

ipcruiser81
Beginner
Beginner

Hi!

Lost on this one.

SVI L3 interface configured with inbound and outbound ACLs.

On inbound ICMP ACL, ICMP packets are logged from a source that doesn't belong to the subnet that is being controlled! Anyone know what's happening? Thanks in advance!

Feb 13 01:12:17 aswitch 1318027 Feb 13 01:12:16.515 UTC: %SEC-6-IPACCESSLOGDP: list ACL-control-in permitted icmp 172.28.202.78 -> 172.30.253.97 (8/0), 1 packet

2 Replies 2

Jon Marshall
VIP Community Legend VIP Community Legend
VIP Community Legend

Might help if you posted config ie. the acls and the SVI config ?

Then again might not but it's a bit difficult to tell with what we have at the moment

Jon

John Blakley
Advisor
Advisor

Are you saying that you're supposed to be blocking the subnet 172.28.202.x from being able to ping, but the acl is allowing it? Can you post your acl and the interface config that the acl is tied to?

HTH,
John

*** Please rate all useful posts ***

HTH, John *** Please rate all useful posts ***
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers