Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Should I have a deny any any rule at the below of my Pix rules?

Hi, I am using the ASDM to look through the rules. I have inside rules and outside rules and DMZ rules. For example at the bottom of the rules for the inside list should I have a deny any any as all the rules above this will still work?

1 REPLY

Re: Should I have a deny any any rule at the below of my Pix rul

Hi,

From : http://www.cisco.com/en/US/docs/security/asa/asa70/configuration/guide/traffic.html

"Access lists have an implicit deny at the end of the list, so unless you explicitly permit it, traffic cannot pass"

I hope this helps.

Best regards.

Massimiliano.

187
Views
5
Helpful
1
Replies
CreatePlease login to create content