Can anyone point to a list of traffic flow order or order of operations doco for the ASA 7.2.x
I only seem to be able to find one that relates to IOS CBAC.
I'm trying to answer a client's question (reference needed): Will Inbound encrypted communications be unencrypted and inspected before entering the internal network?
Having the rest of the flow would be useful for reference.
In addition to the link posted in the other thread -
"Will Inbound encrypted communications be unencrypted and inspected before entering the internal network?"
It depends on the setting of the "sysopt connection permit-vpn" If it is enabled then after the traffic is unencrypted it bypasses interface acl's. If it is disabled then unencrypted traffic is then checked against the interface acl, see this link for full details -
I know I've seen the OoP of the ASA some days a go.
Please have a look at Joe Harris 6200networks.com post about OoP: