Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Security Level and FWSM

Hi,

I read that all traffic on FWSM is explicitly denied. How is a sense of security level for FWSM?

Thanks

Peter

1 REPLY
Hall of Fame Super Blue

Re: Security Level and FWSM

Hi Peter

Yes you do need to explicitly allow traffic with an access-list even if traffic is going from the inside interface (highest security level) to the outside (lowest security level).

But all the other rules still apply in that you can give interfaces the same security level and have traffic flow between them without access-list, you still need to setup static NAT translations for lower to higher level security interfaces (unless you turn off NAT) so it's still pretty much the same as you are presumably used to.

HTH

Jon

160
Views
3
Helpful
1
Replies
CreatePlease to create content