- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
04-12-2019 03:05 PM
Hi there,
I can ping any other ip even though internet is working fine but when i tried to ping External public interface ip from internal its not rechable.
there is a internal to internet policy allowing ping and any other application.
Thanks
04-12-2019 05:16 PM
Did you add an interface management profile to the external interface?
04-22-2019 10:50 AM
Yes, I added an interface management profile to the externral interface. if i removed the profile do you think it will reslove the issue?
04-22-2019 11:16 AM
Hello,
No it would not. the profile needs to have the ping option checked:
04-22-2019 11:18 AM
I've already ping checked in the profile without Permitted IP Address.
04-22-2019 11:20 AM
Hello,
Are you trying to ping that interface from 'inside' the network or from a true external source such as a website that performs test pings?
Please advise,
04-22-2019 11:26 AM
I am trying to ping it from inside interface private IP to external public IP
04-22-2019 11:28 AM
Hello,
I would then make sure you have a u-turn NAT configured.
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClEiCAK
Cisco calls it a hairpin.
Regards,
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!