Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
362
Views
0
Helpful
1
Replies

web server under PIX

ddicky
Level 1
Level 1

‎06-13-2003 12:43 AM - edited ‎02-20-2020 10:48 PM

My web server is alive and sitting behind PIX.

How to set on the firewall inorder to allow the outside users able to send the echo-reply to the web server and get a reply.By default the firewall doesn;t allow the echo reply on the webserver since I only only www trafic for the server.

0 Helpful
1 Reply 1

abertram
Level 5
Level 5

‎06-13-2003 03:56 AM

Simply apply a statement in the outside interface's access-list for icmp traffic to whatever registered IP address you've assigned the web server in the static nat.

Ie.

access-list 101 permit icmp any host 200.1.1.5 echo

access-group 101 in interface outside

Check out this URL as well regarding the icmp uses, both with an ACL and with the icmp permit/deny command for pinging the Pix's own interfaces.

http://www.cisco.com/warp/customer/110/31.html

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card