loopback interface in ASA or FWSM

Unanswered Question
Aug 21st, 2009
User Badges:

Hi experts,


Is it possible to create loopback interfaces in FWSM or ASA firewall


The need is i want a interface command to the firewall as I am facing problem in pinging one interface IP ADDRESS from the other zones.


Thanks in advance


sairam

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Kevin Redmon Sun, 08/23/2009 - 06:21
User Badges:
  • Cisco Employee,

Sairam,


No - Cisco firewalls do NOT allow for a loopback address. If you are having issues with pinging a certain interface IP address, please be sure that you are pinging the interface closest to the client machine - ie NOT another interface. Unlike a router, the Cisco firewalls do NOT allow you to ping a "far-side" interface. Also, be sure that you have 'icmp permit ' for the relevant interface.


cisco24x7 Sat, 10/24/2009 - 15:16
User Badges:
  • Silver, 250 points or more

"Also, be sure that you have 'icmp permit ' for the relevant interface"


This is NOT true. Pix/ASA, by default, will let you ping the interface, unless explicitly dennied.

Actions

This Discussion