Can't ping the interfaces of the FWSM

Unanswered Question
Feb 15th, 2008
User Badges:

Hi,


Im working on a way to monitor our FWSM interfaces and find out that the SNMP is good way for that. Anyway, I've tried also to monitor the FWSM using ping coming from a server on the inside interface to all other interfaces with lower security level and I'm unable to do that.

The only response that i got is from the inside interface.

I already have the command "icmp permit any" in all interfaces. Do you guys know what is missing or wrong, that is causing no response from the other interfaces?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
husycisco Fri, 02/15/2008 - 17:28
User Badges:
  • Gold, 750 points or more

Hi Marcos

Issue the following for PINGs


policy-map global_policy

class-map inspection_default

inspect icmp


Issue the following for pinging inside interface from lower sec int

management-access inside


Regards

marcospce Fri, 02/15/2008 - 18:35
User Badges:

Hello,


I already have this:


class-map inspection_default

match default-inspection-traffic

!

!

policy-map global_policy

class inspection_default

inspect icmp

inspect icmp error

inspect ftp

inspect netbios

inspect rsh

inspect smtp

inspect sunrpc

inspect tftp

inspect sip

inspect xdmcp

inspect dns maximum-length 1500

!

service-policy global_policy global


Actions

This Discussion