cisco asa access lists

Unanswered Question
Feb 22nd, 2008
User Badges:

Hi all, when configuring the acl's on my asa using the asdm, how do I know if the access list is in or out ? does the firewall automatially know this when you add the source and destination networks? as in the cli you normally put the keyword in or out, and its a little bit confusing using the asdm, can anyone confirm how we check if its incoming or outgoing ?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
pjhenriqs Fri, 02/22/2008 - 03:24
User Badges:

Hi Carl,

In the "Configuration" tab under "Security Policy" you have the rules for each interface.

You have the name of the interface and then the direction, for example:

outside(11 incoming rules)

1. ...

2. ...

Is that what you mean?



carl_townshend Fri, 02/22/2008 - 04:04
User Badges:

yes thats right, when adding a rule, how do you define if its incoming or outgoing ?

pjhenriqs Fri, 02/22/2008 - 04:17
User Badges:

When you add an access-rule a new window comes up...

On the top left corner under the "Interface and Action" menu you can choose the interface and the direction (incoming or outgoing).



carl_townshend Fri, 02/22/2008 - 05:13
User Badges:

I see, I have now found it, it was at the bottom of the screen under more options.

another question is, what is the advanced acl manager for, as this does not give us the direction option ? what is it for ?

pjhenriqs Fri, 02/22/2008 - 05:21
User Badges:

I think you would be better off sending print-screens of what you are seeing. I have a completely different interface for my ASAs as it seems...


This Discussion