Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

ASA : Cannot ping the default gateway

Hi all,

I cannot ping my default gateway, and my default gateway connot ping me.

I've got a ASA 5520 with a 8.0.4 OS version.

I've configured the ACL on the interface with the

access-list int1-in extended permit icmp any any

and also added the command.

icmp permit any int1

There is no ACL on my default gateway (Cisco 6500 IOS). And my interface has a security level of 90 without any managgement configuration.

If you've got any ideas of what I can check it we very sweet !

Thanks

3 REPLIES
Community Member

Re: ASA : Cannot ping the default gateway

Can you show :

1) Interface config

2) Ping from your PC

3) "arp -a" from your PC. If ICMP is block , firewall will still respond to ARP.

Community Member

Re: ASA : Cannot ping the default gateway

Please make sure that you have following commands at the top. There should be no icmp deny echo/echo-reply above the permit statements.

icmp permit any echo-reply outside

icmp permit any echo outside

Community Member

Re: ASA : Cannot ping the default gateway

asa(config)# policy-map global_policy

asa(config-pmap)# class inspection_default

asa(config-pmap-c)# inspect icmp

3166
Views
0
Helpful
3
Replies
CreatePlease to create content