Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Quick question re Access-lists Outside & Inside

New to networking so just need someone to confirm this please regarding ASA firwall. If I have created an access-list on the outside interface which allows an outside device to to create a connection to a specific ip address and port on the inside do I also need to create an entry on the inside interface access-list to allow the return traffic?

Many Thanks

Darren

1 REPLY
New Member

Re: Quick question re Access-lists Outside & Inside

Short answer: No you don't

Long answer: Cisco ASA firewalls are stateful, therefore when a connection is built in 1 direction, the other direction is automatically allowed. Also, a connection iniating from inside (high security interface) to outside (low security) is automatically allowed through so long as an accompanying NAT rule is in place.

Hope this helps :)

Please rate posts if they help you.

99
Views
0
Helpful
1
Replies
CreatePlease login to create content