Troubleshooting
Problem
When configuring a rule to detect ICMP echo replies (type 0, code 0), the rule does not work. Rules to detect ICMP echo requests (type 8, code 0) work as expected.
Resolving The Problem
This is a known defect with no current resolution. Echo replies are associated with their respective requests. A rule matching echo requests will also match echo replies, since they are treated as related packets in a single flow.
[{"Product":{"code":"SSHLHV","label":"IBM Security Network Protection"},"Business Unit":{"code":"BU008","label":"Security"},"Component":"Network Access Policy","Platform":[{"code":"PF009","label":"Firmware"}],"Version":"5.3.1;5.3.2;5.3.3","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}},{"Product":{"code":"SSFSVP","label":"IBM QRadar Network Security"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"Documentation","Platform":[{"code":"PF009","label":"Firmware"}],"Version":"5.4","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}}]
Was this topic helpful?
Document Information
Modified date:
22 January 2021
UID
swg21644593