Anh Lam wrote: > Hi Everyone, > > I am always under the impression that one can NOT ping the outside interface > of a Cisco PIX firewall unless the command is used: > > conduit permit icmp any any > conduit permit ip any any > > Well, I have a Cisco pix Firewall 515-UR model (96MB RAM/16MB Flash). > This PIX firewall is running code version 6.0(1) with pdm version 1.11. > Guess what, I can ping the outside interface just fine without the two > commands mentioned above. > > Am I missing something? Below is the config:
Anh, The "conduit icmp" affects pinging *through* the firewall. You need to disable interface pinging. See (watch the wrap): http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_60/config/config.htm#xtocid366534 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=26667&t=26667 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
