07-02-2015 11:44 PM - edited 03-08-2019 12:49 AM
unable to ping vlan ip from directly connected router
Router Model -Cisco 1812
Configuration
-----------------------
CHAN-WH-512#sh run int vlan1
Building configuration...
Current configuration : 126 bytes
!
interface Vlan1
 description ***** Local Lan *****
 ip address 10.175.16.21 255.255.240.0
 ip access-group vcontrol in
end
CHAN-WH-512#ping 10.175.16.21
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.175.16.21, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)
Thanks in advance
Asif
07-03-2015 01:06 AM
Hello,
Could you please post what rules are in the "vcontrol" acl, probably something is wrong with the rules or the way it's applied.
07-03-2015 01:58 AM
07-03-2015 02:06 AM
Try adding as a last rule(before the implicit deny) this:
permit icmp any any
Try to see if it works,and after that if you don't want other devices pinging the router you can be more specific.
07-03-2015 02:27 AM
Thanks...Its working..
Can you please elaborate an issue..
but in other location configuration , we haven't specified "permit icmp any any" rule but able to ping form directly connected VLAN...
07-03-2015 02:40 AM
And the acl has the same rules and it is applied inbound in that location also?
 
					
				
				
			
		
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide