07-02-2015 11:44 PM - edited 03-08-2019 12:49 AM
unable to ping vlan ip from directly connected router
Router Model -Cisco 1812
Configuration
-----------------------
CHAN-WH-512#sh run int vlan1
Building configuration...
Current configuration : 126 bytes
!
interface Vlan1
description ***** Local Lan *****
ip address 10.175.16.21 255.255.240.0
ip access-group vcontrol in
end
CHAN-WH-512#ping 10.175.16.21
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.175.16.21, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)
Thanks in advance
Asif
07-03-2015 01:06 AM
Hello,
Could you please post what rules are in the "vcontrol" acl, probably something is wrong with the rules or the way it's applied.
07-03-2015 01:58 AM
07-03-2015 02:06 AM
Try adding as a last rule(before the implicit deny) this:
permit icmp any any
Try to see if it works,and after that if you don't want other devices pinging the router you can be more specific.
07-03-2015 02:27 AM
Thanks...Its working..
Can you please elaborate an issue..
but in other location configuration , we haven't specified "permit icmp any any" rule but able to ping form directly connected VLAN...
07-03-2015 02:40 AM
And the acl has the same rules and it is applied inbound in that location also?
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: