Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

ICMP inspection increases response times(IOS firewall 1721)

I have a 1721 32/128, running 12.4 enterprise. I have only a few rules configured. I am trying to use ip inspect for outbound traffic(return traffic). When I turn on ip inspect icmp, and remove permit icmp any any echo-reply, my pings do from 24ms to over 150ms. the cpu on the router does not go up much. I have ip inspect tcp, udp, and icmp, in the inspection rule. Is this normal, or what am I doing wrong?

209
Views
0
Helpful
0
Replies
CreatePlease to create content