Jouni Forss Mon, 01/27/2014 - 23:43
User Badges:
  • Super Bronze, 10000 points or more


I am not sure if there really is much difference in the end result.

Traffic might be Denied by the firewall configuration and it will be therefore Dropped. Traffic might be Denied due the interface ACLs or perhaps because there was a packet arriving on ASA that was supposedly part of an existing connection for which ASA does not have information in its connection table (end result is till Drop). Traffic might be Dropped because of the previously mentioned Deny caused by ACL. It might also be Dropped because of missconfigured NAT for example

Is some specific situation unclear related to these or why are you asking?

- Jouni


This Discussion