Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

Same Security levels on multiple interfaces

Why should one keep same security levels on multiple interfaces on Cisco Firewalls? What could be the impact? I was under the impression that same security level cannot be given on multiple interfaces, but i came across a configuration,and had to change my assumption. Just want to understand the best practice and the impact if we configure the interfaces in such a way that 2 interfaces have sec-level 60, 2 have sec-level 80 with remaining as inside and outside...

1 ACCEPTED SOLUTION

Accepted Solutions

Re: Same Security levels on multiple interfaces

If you assign same security level for multiple interface , there will no traffic flow by default unless you configure same-security-traffic permit inter-interface command.

This is used to completely isolate traffic from two interfaces.

Dileep

1 REPLY

Re: Same Security levels on multiple interfaces

If you assign same security level for multiple interface , there will no traffic flow by default unless you configure same-security-traffic permit inter-interface command.

This is used to completely isolate traffic from two interfaces.

Dileep

196
Views
0
Helpful
1
Replies
CreatePlease to create content