09-05-2007 02:17 PM - edited 03-11-2019 04:07 AM
What is required to allow a traceroute to go through the PIX firewall? I believe I have it setup correctly, but I'm still unable to trace through. It just times out when it gets to the firewall. Thanks.
09-05-2007 02:38 PM
Use this ACL applied to your outside interface.
access-list "ACLNAME" permit icmp any any time-exceeded
09-05-2007 03:11 PM
How do I apply that ACL to the interface? I can't find the command.
09-06-2007 03:31 AM
access-group "access list name" in interface outside
09-06-2007 04:40 AM
Just add the following to your outside interface:
access-list
access-list
access-list
access-group
**
save with write mem and also issue claer xlate
pls rate posts if it helps.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: