Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASDM 6.2 GUI question

im a newbie so be easy on me....

i connected to a asa 5510 at work

i checked the GUI of creating access rules

i see that by default all rules are created as incoming and only by choosing "more options" a outgoing rule can be set.

is there any reason for this? why is this option "hidden" ?

Everyone's tags (3)
1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

ASDM 6.2 GUI question

You can configure 10 different ACL incoming to each user vlan interface, or you can create 1 ACL outgoing on server vlan.

Either way is fine, typically you would see which is the least number of line of ACL and apply it accordingly.

3 REPLIES
Cisco Employee

ASDM 6.2 GUI question

Incoming is the most used access-list, where it is incoming towards the interface. Outgoing is seldom used as it is outgoing off the interface.

Don't be confused with the term incoming and outgoing, as it doesn't mean incoming and outgoing off the firewall, but it is incoming and outgoing off the ASA interfaces.

New Member

Re: ASDM 6.2 GUI question

if for example i want to block 10 different user vlans from accesing 1 server vlan

wouldnt i place a deny access rule outgoing on the server vlan interface?

or would i place it incoming on each user vlans interface?

Cisco Employee

ASDM 6.2 GUI question

You can configure 10 different ACL incoming to each user vlan interface, or you can create 1 ACL outgoing on server vlan.

Either way is fine, typically you would see which is the least number of line of ACL and apply it accordingly.

430
Views
0
Helpful
3
Replies
CreatePlease to create content