i'm relatively new to the asa and have encountered what is probably a basic problem
i want to allow a ping from a management station on the inside to a route on the outside but the ping fails and i see a deny in the logs from the ping reply
i assume this is because icmp is not included in the inspect map
it works if we create an acl on the outside interface allowing inbound icmp replies but i think this is a bit of poor practice
can anyone direct me how to allow icmp & the replies through?
thanks to anyone taking the time to reply to this