10-3. Verifying Firewall Connectivity
When you install a firewall or make configuration changes to one, you might need to verify that it can communicate on all its interfaces. Users might also report problems they experience when trying to pass through the firewall. You need a logical approach to verifying the firewall's operation and troubleshooting its connectivity.
You can follow these basic steps to verify that a firewall can communicate with its neighboring networks:
Step 1. | Test with ping packets. |
Step 2. | Check the ARP cache. |
Step 3. | Check the routing table. |
Step 4. | Use traceroute from a workstation to verify the forwarding path through the firewall. |
Step 5. | Check the access lists. |
Step 6. | Verify address translation operation. |
Step 7. | Look for ... |
Get Cisco ASA and PIX Firewall Handbook now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
