04-13-2017 01:43 AM - edited 03-08-2019 10:11 AM
In ASA firewall, normally use access-list or access group to controll permit or deny policy.
But I want to use interface(select inside, outside,dmz..etc) for access control.
How can I use access control on interface ?
Is it work ? and Is it used commonly in network engineer ?
04-13-2017 02:01 AM
you can use priority level on each interface (0-100), if it's priority lvl 100 it's trusted interface, if it's 0 it's untrusted, and this priority lvl works like ACL
04-13-2017 06:46 AM
Hi
Please correct me, do you want to allow or deny access to users on a Cisco Firewall? You could use the following line but is applied globally:
ssh <name if> <ip address or subnet> <subnet mask>
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide