Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1616
Views
0
Helpful
2
Replies

Turn off firewall for ASA running IPS

jkrysinski
Level 1
Level 1

‎12-03-2007 01:56 PM - edited ‎03-10-2019 03:53 AM

I have two ASA devices. 5510 with IPS and 5520 with Content scanning. The 5510 sits behind the 5520. I want the 5520 to perform all firewall functions along with content scanning for spyware and viruses. The 5510 will be used purely for IPS for traffic that has been allowed through the 5520. Is there a way to effectively turn off the firewall on the 5510? Is there any inherent problems with this configuration?

Regards,

James Krysinski

Labels:
0 Helpful
2 Replies 2

amritpatek
Level 6
Level 6

‎12-10-2007 02:55 PM

Yes, you can turn off the firewall on ASA. For this remove any interface which is in outside or inside; better place all interfaces in same security level. Now permit all traffic between the same security level interfaces and remove any other config which was used for firewall.

0 Helpful

jkrysinski
Level 1
Level 1
In response to amritpatek

‎12-10-2007 08:12 PM

Thanks for the tip. I followed your advice and was able to have the 5510 perform just IPS.

Thanks again.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card