is it possible to create a ACL to permit from any to a particular ip address? i.e I have a ASA with three interfaces (inside, outside and DMZ) and I want to create a ACL to permit from any to inside host (this is probably a bad example but anyway..),
the ACL should look like:
ASA (config) # access-list any-inside extended permit ip any object Inside-host
however what interface should I apply the ACL on?
ASA (config) # access-group any-inside in interface ???
If the outside is Internet, you'd generally also have a 1-1 NAT rule for the host in question. Depending on your ASA software version, the access-list would refer to either the NAT address (ASA <8.3) or the real host address (ASA >= 8.3).
The access-list is applied to the outside interface. You want to evalaute and allow or deny the connection at the first interface it hits on the ASA.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...