09-05-2007 02:17 PM - edited 03-11-2019 04:07 AM
What is required to allow a traceroute to go through the PIX firewall? I believe I have it setup correctly, but I'm still unable to trace through. It just times out when it gets to the firewall. Thanks.
09-05-2007 02:38 PM
Use this ACL applied to your outside interface.
access-list "ACLNAME" permit icmp any any time-exceeded
09-05-2007 03:11 PM
How do I apply that ACL to the interface? I can't find the command.
09-06-2007 03:31 AM
access-group "access list name" in interface outside
09-06-2007 04:40 AM
Just add the following to your outside interface:
access-list
access-list
access-list
access-group
**
save with write mem and also issue claer xlate
pls rate posts if it helps.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide