Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
194
Views
0
Helpful
1
Replies

access-list question

mahesh18
Level 6
Level 6

‎08-18-2008 08:09 AM - edited ‎03-06-2019 12:52 AM

i have access-list applied on route r interface--

interface Ethernet0/1

description Pt-Pt Connection to ATT CE Router

ip address 10.137.255.254 255.255.255.252

ip access-group 190 out

ip directed-broadcast

half-duplex

i have few servers connected to switch in network.i can ping the servers from switch and also from there gateway which is router.but not from outside

i found access list on router

Extended IP access list 190

which shows

deny icmp any any echo-reply (23151 matches)

deny icmp any any echo (15906 matches)

is this reason why i can not ping server from outside

Labels:
0 Helpful
1 Reply 1

Richard Burts
Hall of Fame
Hall of Fame

‎08-18-2008 08:39 AM

mahesh

That certainly does look like the reason. This line in the access list:

deny icmp any any echo-reply (23151 matches)

denies the ping response (echo-reply is the response to ping). And since it is applied outbound to the outside it would deny any ping response to requests generated from outside.

HTH

Rick

HTH

Rick
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card