I have a FWSM running 3.1.4 that has an outside and inside interface. There is a server 146.22.x.x on the outside that needs to ftp to 146.27.y.y The FW buffer log shows access-list outside is denying the traffic. I look at access-list outside and the very first line allows 146.22.x.x to 146.27.y.y I add an ACE on top to allow any tcp from 146.22.x.x to 146.27.y.y but still gets the denies in the log. I pipe the hex number on the deny info and it shows that the ACL denying the traffic is my explicit deny ip any any on line 91 of access-list outside. I am using the default class-map and policy-map. FTP is being inspected under the default map. Nat control is turned off on this FWSM. Any suggestions on how to troubleshoot this issue? Thanks
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...