Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
234
Views
0
Helpful
1
Replies

Quick question re Access-lists Outside & Inside

darrenriley5
Level 1
Level 1

‎05-22-2009 12:48 AM - edited ‎03-11-2019 08:35 AM

New to networking so just need someone to confirm this please regarding ASA firwall. If I have created an access-list on the outside interface which allows an outside device to to create a connection to a specific ip address and port on the inside do I also need to create an entry on the inside interface access-list to allow the return traffic?

Many Thanks

Darren

Labels:
0 Helpful
1 Reply 1

handsy
Level 1
Level 1

‎05-22-2009 02:19 AM

Short answer: No you don't

Long answer: Cisco ASA firewalls are stateful, therefore when a connection is built in 1 direction, the other direction is automatically allowed. Also, a connection iniating from inside (high security interface) to outside (low security) is automatically allowed through so long as an accompanying NAT rule is in place.

Hope this helps :)

Please rate posts if they help you.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card