Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
276
Views
0
Helpful
2
Replies

Ping out problems.

rschoon
Level 1
Level 1

‎02-28-2007 02:44 PM - edited ‎03-11-2019 02:39 AM

I would be grateful if anyone can enlighten me with regards to what I am doing wrong in setting up my asas5510. I?m unable to ping out to the Internet from my DMZ or from the inside out to the internet. I can ping devices on the inside and I can ping from inside to devices in the DMZ. I?m also like to place my DNS server in the DMZ and unclear on DNS rewrites works or what needs to done to lace a dns server in the dmz .

Thanks

Labels:
Preview file
5 KB
0 Helpful
2 Replies 2

hoogen_82
Level 4
Level 4

‎03-01-2007 12:55 AM

Add another access-list

access-list outside_access_in extended permit icmp any x.x.x.x y.y.y.y

For ICMP alone you need to specify an acceslist on the outside interface to allow replies to come back...

HTH

Hoogen

Do rate if this helped :)

0 Helpful

jwalker
Level 3
Level 3

‎03-01-2007 08:36 AM

You can restrict ICMP even further if you only allow inbound echo replies instead of all inbound ICMP. This will prevent attackers from gleaning information using pings to your public range.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card