I have a cisco PIX 515E.
I have 6 interfaces.
Off one of the interfaces is a cisco 871 router which i have setup to act as a gateway to access another network.
The internal interface sec level 100
The cisco_router interface sec level 80.
From the cisco 172.16.16.2 internal interface I cannot ping anything on the internal LAN.
I am allowing traffic from the internal lan to communicate to the 172.16.16.0 network via an ACL.
I am allowing the traffic from the 172.16.16.0 range to access the internal network by allowing in an ACL into this interface.
I have setup icmp permit any cisco_Inside on the pix
I have setup a capture on this interface and can see matches from 172.16.16.2 going to the the internal machine (It resolves a name as well) but nothing back.
I have setup a capture on the internal lan interface and cannot see matches sending back or replying to the 172.16.16.0 subnet. So it's not even getting there.
I do not have access to troubleshoot from the internal lan which makes it hard.
I have a route on the cisco 871 to route to the internal range via the connecting interface on the pix but trace routes timeout first hop.
From the pix I can ping the 172.16.16.2 interface on the cisco 871.
Does anyone have any ideas why I can't ping.
Will post cofigs if needed.