Avatar of limarc
limarcFlag for United States of America asked on

Cisco PIX Version 6.3

I have a PIX 501 (V.6.3) behind a cable modem that assigns the PIX an IP on the outside interface. For some reason I am able to PING the outside interface although the security is set to 0 and i have no statements allowing ICMP in or out. I can not PING from inside the network to the outside (i know how to change that) but I am able to ping the outside interface from outside the PIX. I am thinking it has something to do with the cable modem but I am not sure. Help!

Avatar of undefined
Last Comment

8/22/2022 - Mon

ping is working from the pix because it uses outside interface by default to send the packet from and has nothing to do with the security level.
ping inside (interface) x.x.x.x (destination) is the command to ping using inside interface.

It is secure to allow ping on the outside interface, but if you'd like to disable this, try using command no icmp enable outside (this is the command on asa, so might be different on the pix.

Hope this helps..


I though any "no" before a command simply removes an already issued command. According to what i read in Cisco documentation the ping on the outside interface should be disabled by default.

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
I started with Experts Exchange in 2004 and it's been a mainstay of my professional computing life since. It helped me launch a career as a programmer / Oracle data analyst
William Peck