Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Inside server cannot ping remote vpn client

My easy vpn client can build up the vpn tunnel with my office ASA5510 successful and my vpn client can ping the internal server. But my internal server cannot ping the remote vpn client. Even the vpn client windows firewall was disable.

1. Internal server can ping the Internet through ASA.

2. Internal server cannot ping vpn client.

3. Vpn client can ping the Internal server.

Why interal server cannot ping vpn client ? Does ASA only support vpn in one way direction ?

Thanks.

1 ACCEPTED SOLUTION

Accepted Solutions

 Hi  Enable inspect ICMP , it

 

Hi 

 Enable inspect ICMP , it should work for you . 

policy-map global_policy
 class inspection_default
  inspect dns preset_dns_map
  inspect icmp
  inspect icmp error

 

inspect icmp

To configure the ICMP inspection engine, use the inspect icmp command in class configuration mode. Class configuration mode is accessible from policy map configuration mode.

inspect icmp

 

HTH

Sandy

 

1 REPLY

 Hi  Enable inspect ICMP , it

 

Hi 

 Enable inspect ICMP , it should work for you . 

policy-map global_policy
 class inspection_default
  inspect dns preset_dns_map
  inspect icmp
  inspect icmp error

 

inspect icmp

To configure the ICMP inspection engine, use the inspect icmp command in class configuration mode. Class configuration mode is accessible from policy map configuration mode.

inspect icmp

 

HTH

Sandy

 

72
Views
0
Helpful
1
Replies
CreatePlease to create content