Hello all,
I have a conduit command on my PIX that allows a ping from workstations on my lan to reach a remote machine across the net.
conduit permit icmp host 65.165.98.171 170.31.92.16 255.255.255.252
The host ip above is my (outside) IP address on my PIX. How can I accomplish the same thing with an access-list?
I believe NAT allows all (pings) out but the reply just cannot get back in. Do I place an access-group on the (outside) interface "in"
Thanks,
Jerry Roy