Hello Team,
If I would like to ping the uplink IP of the physical router from a VM which is connected to the T1 gateway If I write the below rule in DFW then would I be able to ping the same? OR the same type of rule should be there in the physical firewall as well then only I would be able to ping the Uplink router IP from VM, Please assist.
Source VM1
Destination UplinkRouterIPAddress
Service ICMP Echo
Action Allow
Thank you in Advance
Do a traceroute from the VM to the router IP & see where the packet is getting dropped. Sometimes, Customers implement ACL on the router to block ICMP, you can ask the Customer to check that as well.
Hi,
It depends on the traffic path. If you have a physical firewall in the traffic path between the VM & the router, then yes you should have the rule to allow ICMP between the VM & the router.
Ok, Thank you.
I've checked the network topology diagram, we don't have a firewall between VM and router still not able to ping, what could be the reason for the same?
Do a traceroute from the VM to the router IP & see where the packet is getting dropped. Sometimes, Customers implement ACL on the router to block ICMP, you can ask the Customer to check that as well.