ASA - Security Levels Question

Unanswered Question
Apr 3rd, 2009
User Badges:
  • Bronze, 100 points or more

I understand that you can go from a higher security interface to a lower security interface without configuring acls. The ASDM shows that there is an implicit rule allowing this. My question is - once I configure an access rule on the ASDM, that line disappears. Does that mean that I no longer have an implicit rule allowing me to go from a higher security interface to a lower security interface. I am entering a rule to allow a DMZ interface (level 50) to reach some internal servers on the inside (level 100). Once I configure this rule, have I now cutoff access to the level 0 interface?


Thanks,

Jim

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
John Blakley Fri, 04/03/2009 - 13:55
User Badges:
  • Purple, 4500 points or more

Jim,


No, the higher levels will still be able to go out. Have you noticed a problem?


HTH,


John

Actions

This Discussion