×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

PIX vpn Question

Unanswered Question
gfullage Mon, 08/18/2003 - 16:38
User Badges:
  • Cisco Employee,

Up until PIX 6.3 code you could not do this, nothing to do with your configuration or setup, you just can't ping a PIX interface from another interface. This is the same as you trying to ping the PIX outside interface from a machine on the inside interface of the same PIX (not over the VPN), you can't do it.


Starting in 6.3 code, we introduced a new command that'll allow you to ping, telnet, SSH, PDM to the inside interface of a PIX if you come in over a VPN tunnel. Just put the following in yor config (after upgrading if necessary):


> management-access inside


See http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/cmdref/mr.htm#1137951 for details.

matthewtan Mon, 08/18/2003 - 19:00
User Badges:

Since you have allowed icmp in your ACL, i was thinking that it might be due to the following config which may be missing.


[no] icmp permit|deny []


You can try putting in the above config to explicitly allow/deny an IP address/network to ping to the particular PIX interface.


Actions

This Discussion