ICMP are denied by Firewall to monitor WAN links VIPs

If we need to have ICMP enabled, Firewall rules are required following next guidelines: - Traffic type: IP protocol - IP protocol: ICMP - Source and destination zones: Untrusted_Internet_Zone - Source service type: Internet - Destination service type: IP Host

---

Problem Cause

As per documentation, untrusted interfaces responde to ARP/ICMP by default. This behavior is changed when internet service is configured where untrusted interface stop responding to ICMP packet due to security configuration added for service