Project Info:

This is a Networking project for configuring Cisco Adamptive Security Virtual Appliance (ASAv) Firewall to allow Internet Control Message Protocol (ICMP) Traffic.

Project Details:

The Internet Control Message Protocol (ICMP) Traffic on a Cisco Adaptive Security Appliance (ASAv) is allowed by default from a Higher Security Level to Lower Security Level. In this project, I explained how return traffic is allowed without the need of an Access Control List (ACL). For stateful TCP traffic, the return traffic is allowed while initiated from inside. However, you have to configure the appliance with either "Insepect Icmp" statement in the global_policy map or configure "ACL to allow echo-reply" in order to ping from internal host to the outside, and more.