I have an ASA that has an OUTSIDE interface connected to the Internet, and an INSIDE interface connected to my LAN.
I enter the following commands on the ASA:
access-list 105 extended deny icmp any any
match access-list 105
service-policy ICMP interface INSIDE
I thought that if I applied these commands, then the ICMP packets are going to be dropped, but that's not the case.
Are these commands doing anything on the ASA and can I drop packets by using CLASS-MAPS and POLICY-MAPS instead of using ACCESS-LISTS?