[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Enable icmp ping on ASA 5505 WAN interface

Posted on 2008-10-09
3
Medium Priority
?
18,455 Views
Last Modified: 2014-08-14
Is it possible to enable ICMP ping on my WAN interface for my ASA 5505 as I want to do some diagnosis and performance analysis.

Many thanks.
0
Comment
Question by:AXISHK
3 Comments
 
LVL 4

Assisted Solution

by:TNL_Engr
TNL_Engr earned 400 total points
ID: 22679321
Yes.  If you are working from the ASDM GUI the setting is found under:

Configuration: Device Management: ICMP
Click Add, and select the outside Interface, permit 0.0.0.0 0.0.0.0

From the CLI, it looks like this:
icmp permit any Outside
0
 
LVL 12

Accepted Solution

by:
Pugglewuggle earned 1600 total points
ID: 22682934
The thing is that by default, ASAs block all ICMP replies.
To allow this, you need to add this to your access-list:
access-list outside_access_in permit icmp any any echo-reply
access-group outside_access_in in interface outside

I never use the separate icmp permit command because it allows ALL ICMP messages to pass, which can be a potential security threat - not just the ping replies.
Cheers! Let me know if you have any questions
0
 

Expert Comment

by:jongrew
ID: 40260995
I have used the commands in the accepted solution but I still cannot ping the ASA from outside.  Does this command work in version 8.4(4)
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Let’s face it: one of the reasons your organization chose a SaaS solution (whether Microsoft Dynamics 365, Netsuite or SAP) is that it is subscription-based. The upkeep is done. Or so you think.
How to fix a SonicWall Gateway Anti-Virus firewall blocking automatic updates to apps like Windows, Adobe, Symantec, etc.
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses
Course of the Month19 days, 3 hours left to enroll

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question