We're running ACE module and have configured servers behind one of its int. We have applied the ICMP any any and IP any any access lists to both, the client int and the servers int in the direction of the input. From the outside, we can ping the client int, however not the servers' int. We can ping the servers from within the ACE.
Does anyone happen to know what we may be missing here?
GW ----- ACE ----- Servers
From the gateway, you can ping the ACE interface on the GW side, but you can't ping the ace interface on the servers side.
From the servers, you can ping the ace interface on the server side but you can't ping the ace interface on the gw side.
From the servers you should be able to ping the gw and from the gw you should be able to ping the servers if you have an acl to permit the traffic on both interfaces.