PIX firewall 6.2
Posted on 2003-02-20
1.i m not able to ping the dmz interface from a machine connected to the pix. though i m able to ping hosts in the dmz zone. i think since i m in hi sec zone, i shud b able to ping the interface on a low sec such as dmz.
2.i dont have any conduits in my configuration. is it mandatory to have the following command, how do i interpret the command?
conduit permit icmp any any
can u give me an equivalent access list?
3.how are debug messages viewed. can i view them when i telnet into the pix.
4. i wanna make sure that pix is responding to denied ping connections by observing icmp request n replies. how do i do that. for example when i ping the dmz interface and get request timed out messages, i want to see icmp exchanges in the debug.
5. what do these mean? please give a 1 line description
route ouside 0 0 192.168.1.2 1
nat (inside) 1 0.0.0.0 0.0.0.0
route outside 0.0.0.0 0.0.0.0 192.168.1.2 1