Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Best way to allow ICMP

Solved
Fabian1
Getting noticed
‎Jul 21 2022 1:14 AM
‎Jul 21 2022 1:14 AM

Best way to allow ICMP

Hi everyone,

 

I have some subnets were we are very strict with allowing traffic. Now at the end of the ACL I simply say, deny ANY.

In the protocol list of the acl there is no ICMP, just TCP, UDP and any.

Where can I configure to allow ICMP? Or do I have to change the deny any at the end and deny tcp and udp to allow ICMP? I'm a bit confused here...

Thank you!

Labels:
0 Kudos
Subscribe
1 Accepted Solution
KarstenI
Kind of a big deal
Kind of a big deal
‎Jul 21 2022 3:08 AM
‎Jul 21 2022 3:08 AM

You are talking about the ACLs that you can configure on the Switches?

Then you are IMO out of luck. With an ACL

   deny tcp
   deny udp
   allow IP

ICMP should work, but also all other IP protocols that you likely don't want. This is a job for a firewall.

View solution in original post

Subscribe
1 Reply 1
KarstenI
Kind of a big deal
Kind of a big deal
‎Jul 21 2022 3:08 AM
‎Jul 21 2022 3:08 AM

You are talking about the ACLs that you can configure on the Switches?

Then you are IMO out of luck. With an ACL

   deny tcp
   deny udp
   allow IP

ICMP should work, but also all other IP protocols that you likely don't want. This is a job for a firewall.

Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.