Unanswered Question
Marwan ALshawi Mon, 10/27/2008 - 20:18

although i see your question not spicific !!!

but lets say u can leave an ASA firewall without ACL

if u have the folloiwng simple network

egde firewall

two interfaces inside and outside

users connected to inside with higher securty level

other networks like internet connected to outside with lower security level

only u need internal users to access the internet or the inetwork behind the outside interface

u may need to configure proper NATing only

this case u dont need ACL

good luck

if helpful Rate

Marwan ALshawi Mon, 10/27/2008 - 22:17


your question is confusing

in general ACL existed to make what is called paket filltering mostly on L3/L4

u can use router or firewall without ACL

but the thing is depends what you wnat to achieve, where the device is located in ur network and so on

hope this helpful


This Discussion