I thought any incoming traffic from the outside interface of an ASA 5520 is denied by default. From home, I can ping the public IP. Any explanation?
Our 5520 is connected via DSL router to the cloud. The DSL is allowing ICMP. I created an access rule to deny any ICMP from the DSL router. No avail, I can still ping reply from the ASA.
Any help/suggestion is appreciated.
I did not suggest an ACL.
I suggested the command "icmp deny any " on the ASA.
That will do it.
Rate helpful posts.
The ASA will respond to pings by default.
If you are pinging the ASA then use "icmp deny any " on the ASA and it will drops the pings to it.
I hope it helps.
By default all traffic from the outside to the inside is denied by default.
But this applies to pass-thru traffic through the ASA (not to traffic to the ASA itself).
What are you PINGing from the outside?