Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

allow licmp to dmz on an asa551

We have a l2l to an asa, but it will not pass icmp even though I have it allowed between hosts. The host on the asa is on e2 with a securtiy level of 50. But telnet, etc will pass through?

1 REPLY
Silver

Re: allow licmp to dmz on an asa551

The default behavior of the security appliance is to allow all ICMP traffic to the security appliance interfaces. However, by default the security appliance does not respond to ICMP echo requests directed to a broadcast address. The security appliance also denies ICMP messages received at the outside interface for destinations on a protected interface.

http://www.cisco.com/en/US/products/ps6120/products_command_reference_chapter09186a00805fba52.html

119
Views
0
Helpful
1
Replies
CreatePlease to create content