Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
529
Views
8
Helpful
4
Replies

acl

dkblee
Level 1
Level 1

‎10-22-2008 10:18 PM - edited ‎02-20-2020 09:41 PM

hi! Is there any cisco tools that can ease management or replace acl within vlan? Can NAC do that? Pls advise. Thanks.

Labels:
0 Helpful
4 Replies 4

Farrukh Haroon
VIP Alumni
VIP Alumni

‎10-25-2008 05:32 AM

"replace acl within vlan"

can you please spell out more details about your requirement? Which device is this?

Regards

Farrukh

0 Helpful

dkblee
Level 1
Level 1
In response to Farrukh Haroon

‎10-27-2008 07:51 AM

hi! Sorry some typo errors there.....what i meant is that, is there any tools or device that i can use to ease management or replace acl applied on different vlan interfaces? Can NAC achieve that?

Is there any tools that is more effective than acl to filter packet between my vlan interfaces at the 6509 core?

Thanks.

0 Helpful

srue
Level 7
Level 7
In response to dkblee

‎10-27-2008 09:48 AM

a firewall services module/ FWSM. they're very expensive though.

Farrukh Haroon
VIP Alumni
VIP Alumni
In response to srue

‎10-27-2008 12:41 PM

The problem with ACLs are that they are vulnerable to various attacks due to their 'near' stateless nature. Stateful firewalls/packet filters are therefore considered more secure. I would recommend an ASA/FWSM or at least an IOS router running an Advanced Security image (to utilize the zone-based firewall feature). There are free graphical tools provided by Cisco (SDM,ASDM etc.) that can help you manage your firewall rules graphically.

Regards

Farrukh

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents