I have a Pix 501 firewall at a remote site that has an established IPSEC tunnel back to HQ. We have a monitor tool that pings remote sites to let us proactively know when a site goes down. I would like to set up this tool to ping the inside interface of the Pix like I can with the 871 routers; however I am unable to configure the Pix to allow the ICMP to the inside interface. I know by default that that the Pix does not allow ICMP to the opposite interface and I was wondering if someone could help me with a configuration that will allow this? I have attached my configuration from the pix!
Looking up the command tool, it seems the ''management-access'' command was introduced in version 6.3
I would recommend to upgrade to 6.3 if you have the option.