Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

Firewall Access Rules Configuration

Hi

 

I am running software version 8.2.1 on a ASA 5520.

My inside network is 10.10.254.250 /24

My outside interface is 193.120.10.142

and  I have a VPN Pool of 192.168.253.1 - 15

I am trying to configure firewall access rules to allow traffic from the outside into the inside network and also when I am connected via the VPN(192.168.253.x) network to inside network. My NAT config is working ok. Just wondering if anyone has a working configuration for this.

 

My background is Cisco voice, so don't know firewalls that well

 

Thanks,
Derek

 

1 REPLY
Silver

Hi derekmccorHere is the

Hi

Here is the config for your firewall.
 

To allow outside traffic :

Access-list  name permit (host IP or net range you want to allow  )

!! This will create the access list !!

Access-group name in interface (outside interface name)

!! This will apply the access-list to the interface !!

 

Example

Access-list  OUTSIDE-TRAFFIC permit 172.20.20.0 255.255.255.0 

Access-group OUTSIDE-TRAFFIC in interface outside

 

FYI you can do access-lists to allow / deny specifics protocols or services such ping, telnet , etc or any filter any port you want.

 Regards ,

 

39
Views
0
Helpful
1
Replies
CreatePlease to create content