Fortigate: Cannot Ping an Interface?
Nov25

Fortigate: Cannot Ping an Interface?

KB ID 0001718 Problem With other firewall vendors (i.e. Cisco) you can ping any interface you are ‘directly connected to’. With Fortigate however you cannot (by default). That’s not the end of the world you can check connectivity using ARP (see below) which is what really cool network techs do instead! But if you want to be able to ping an interface (even for a short period of time). Here’s how to do it....

Read More
Windows Firewall – Enable ‘Ping’ / ICMP Echo Reply
Jan18

Windows Firewall – Enable ‘Ping’ / ICMP Echo Reply

KB ID 0001134  Problem By default all modern distributions of Windows come with their client firewall enabled. Which is a good thing, most corporate networks simply disable it using the rationale that they have a corporate firewall and security software etc. Again thats fine, but what if you want to leave it on, and still be able to ping that host to see if its alive. Solution The firewall exception is already written for you, you...

Read More
Juniper SRX Firewall – Allow ‘Ping’
Nov17

Juniper SRX Firewall – Allow ‘Ping’

KB ID 0000706  Problem I was working on an SRX100B Firewall yesterday, and needed to be able to ping the outside interface. Solution Note: You can quickly enable ping on a physical interface from CLI like so; set security zone security-zone trust interface ge-0/0/0 host-inbound-traffic system services ping 1. Log into the web console of the Juniper. 2. Navigate to Security > Zones/Screen > Select the ‘Untrust’ Zone...

Read More