<div>
ping is working from the pix because it uses outside interface by default to send the packet from and has nothing to do with the security level.<br />
ping inside (interface) x.x.x.x (destination) is the command to ping using inside interface.<br />
<br />
It is secure to allow ping on the outside interface, but if you'd like to disable this, try using command no icmp enable outside (this is the command on asa, so might be different on the pix.<br />
<br />
Hope this helps..<br />
<br />
<br />

</div>


ping is working from the pix because it uses outside interface by default to send the packet from and has nothing to do with the security level.
ping inside (interface) x.x.x.x (destination) is the command to ping using inside interface.

It is secure to allow ping on the outside interface, but if you'd like to disable this, try using command no icmp enable outside (this is the command on asa, so might be different on the pix.

Hope this helps..




<div>
I though any &quot;no&quot; before a command simply removes an already issued command. According to what i read in Cisco documentation the ping on the outside interface should be disabled by default. 
</div>


I though any "no" before a command simply removes an already issued command. According to what i read in Cisco documentation the ping on the outside interface should be disabled by default.

<div>
<div class="content wysiwyg-content">
I have a PIX 501 (V.6.3) behind a cable modem that assigns the PIX an IP on the outside interface. For some reason I am able to PING the outside interface although the security is set to 0 and i have no statements allowing ICMP in or out. I can not PING from inside the network to the outside (i know how to change that) but I am able to ping the outside interface from outside the PIX. I am thinking it has something to do with the cable modem but I am not sure. Help!
</div>
</div>


I have a PIX 501 (V.6.3) behind a cable modem that assigns the PIX an IP on the outside interface. For some reason I am able to PING the outside interface although the security is set to 0 and i have no statements allowing ICMP in or out. I can not PING from inside the network to the outside (i know how to change that) but I am able to ping the outside interface from outside the PIX. I am thinking it has something to do with the cable modem but I am not sure. Help!

Cisco PIX Version 6.3

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).