I'm having an issue that is kind of stumping me. I installed Sophos UTM and have been using it for some time now. The one thing I can't get to work is this:
How can I allow pings on my internal interface while denying them on my external interface. For various reasons I need my internal interface to be pingable. The only way it seems to accomplish this is by going to the ICMP settings, and turning on "Allow ICMP on gateway" or "Gateway is ping visible". The drawback is that this also allows pinging on my external interface which I do not want. The ICMP settings seem to take precedents over any Firewall rules so any rules I put in place had no effect. I also followed some instructions in a Sophos Board about disabling the ICMP settings by typing in "cc set icmp secure 0" at the command line. This didn't seem to have any effect. So how would I accomplish this?
I'd also like to say I have a pretty deep understanding of networking as it's what I do for a living. I mostly deal with Cisco, ASA, and Fortinets.
Would appreciate any help.
This thread was automatically locked due to age.
