Can't ping the interfaces of the FWSM

Unanswered Question
Feb 15th, 2008

Hi,

Im working on a way to monitor our FWSM interfaces and find out that the SNMP is good way for that. Anyway, I've tried also to monitor the FWSM using ping coming from a server on the inside interface to all other interfaces with lower security level and I'm unable to do that.

The only response that i got is from the inside interface.

I already have the command "icmp permit any" in all interfaces. Do you guys know what is missing or wrong, that is causing no response from the other interfaces?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
husycisco Fri, 02/15/2008 - 17:28

Hi Marcos

Issue the following for PINGs

policy-map global_policy

class-map inspection_default

inspect icmp

Issue the following for pinging inside interface from lower sec int

management-access inside

Regards

marcospce Fri, 02/15/2008 - 18:35

Hello,

I already have this:

class-map inspection_default

match default-inspection-traffic

!

!

policy-map global_policy

class inspection_default

inspect icmp

inspect icmp error

inspect ftp

inspect netbios

inspect rsh

inspect smtp

inspect sunrpc

inspect tftp

inspect sip

inspect xdmcp

inspect dns maximum-length 1500

!

service-policy global_policy global

Actions

This Discussion