This functionality is generally accepted as firewall industry standard or 'by design'.
The logical flow of pinging a non-local 'up' firewall interface through a local firewall interface equates to a hairpin. No modern manufacturer I know of supports this.
Hi @Matt_XYZ1 , this is by default because X2 is in a different Zone to the LAN, if you want to be able to ping the X0 IP from the X2 subnet then you need to create an Access rule from the Zone = Phone System to the Zone = LAN - Service = Ping - Destination = X0 Interface IP - Allow
Answers
This functionality is generally accepted as firewall industry standard or 'by design'.
The logical flow of pinging a non-local 'up' firewall interface through a local firewall interface equates to a hairpin. No modern manufacturer I know of supports this.
Hi @Matt_XYZ1 , this is by default because X2 is in a different Zone to the LAN, if you want to be able to ping the X0 IP from the X2 subnet then you need to create an Access rule from the Zone = Phone System to the Zone = LAN - Service = Ping - Destination = X0 Interface IP - Allow