ASA ACL for Inside to Outside denial of Specific IP

Unanswered Question
Apr 27th, 2007
User Badges:

Hello all,

We have new ASA 5520's and I need to deny traffic from inside to specific outside IPs. How can I accomplish this without denying traffic to all other outside IPs? As soon as I add the rule to the inside interface, it removes the Permit to "any less secure networks". Obviously I'm new at this, so any help is appreciated!

Thanks in advance for your answers!

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
mark.j.hodge Fri, 04/27/2007 - 07:20
User Badges:
  • Bronze, 100 points or more

Try adding a

permit ip any any

line to the end of your access list

dianna.maclaren Tue, 05/01/2007 - 08:27
User Badges:


Thanks so much. After dinking around a little more and using your suggestion, that worked. Its the deny any any as the last line that threw me off!



This Discussion