I have an ASA 5540 and I have ACL's applied to inside and outside int's that allow all traffic currently and I have proved that the ICMP and SSH traffic is being allowed by doing a packet trace. I did notice in my logs that when an ICMP packet hits the inside interface from the outside it is replying but the logs are saying the following:
Apr 10 2007 09:37:53: %ASA-6-302020: Built ICMP connection for faddr 1XX.XX.XX.X/512 gaddr 1XX.XX.XX.X/0 laddr 1XX.XX.XX.X/0
Apr 10 2007 09:37:55: %ASA-6-302021: Teardown ICMP connection for faddr 1XX.XX.XX.X/512 gaddr 1XX.XX.XX.X2/0 laddr 1XX.XX.XX.X2/0
can anyone assist me what is going on with the stateful ICMP inspection or should I be looking at something else?