Not able to ping

Unanswered Question
Feb 17th, 2009

Hi all

I can ping to 195.229.249.x(outside network) ip from PIX, but I can't ping from the inside network.

The PIX config is attached

Please help

Thanks

Attachment: 
I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
JamesLuther Tue, 02/17/2009 - 04:57

Hello,

On PIX ICMP isn't stateful so you need to add a rule for the reply traffic liek so

access-list 101 extended permit icmp any any echo-reply

You can also tie down the "any any" to the subnets in question (remembering this is the reply traffic!!!)

Thanks

ciscosrini369 Wed, 02/18/2009 - 01:52

hi,

By default from high security level to lower security level icmp will be blocked, u need to apply acl for the same.

Actions

This Discussion