What is a dynamic ACL on a Pix?

Unanswered Question
Aug 7th, 2007

When I do a show acces-list on my Pix once in awhile I see a dynamic accesl-list. From reading here it seem associated with VPN's but I don't see anything specific.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Anonymous (not verified) Mon, 08/13/2007 - 10:29

I think a dynamic acl is an acl created dynamically on pix when there is a need to pass some traffic which matches some protocol behaviour according to pix configuration. Dynamic acls are not specific to VPN's and they can used to pass traffic for protocols like SQL, FTP, etc which dynamically negotiate the port for data transfer or some other activity.

rigoberto.cintr... Mon, 08/13/2007 - 12:50

There different types of dynamic acl's in a pix/asa. Some are created to block malicius traffic and others are create to allow traffic based on the ASA(Adaptive Security Algorithm).


This Discussion