08-07-2007 06:25 AM - edited 03-11-2019 03:54 AM
When I do a show acces-list on my Pix once in awhile I see a dynamic accesl-list. From reading here it seem associated with VPN's but I don't see anything specific.
08-13-2007 10:29 AM
I think a dynamic acl is an acl created dynamically on pix when there is a need to pass some traffic which matches some protocol behaviour according to pix configuration. Dynamic acls are not specific to VPN's and they can used to pass traffic for protocols like SQL, FTP, etc which dynamically negotiate the port for data transfer or some other activity.
08-13-2007 12:50 PM
There different types of dynamic acl's in a pix/asa. Some are created to block malicius traffic and others are create to allow traffic based on the ASA(Adaptive Security Algorithm).
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide