Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ASA DAP

Hello, I have an internet facing ASA configured with an ACL on the outside interface.  The ACL allows access to my web facing services hosted in several DMZ's. 

The ASA is also configured for anyconnect remote access VPN.  My question is do I need to specify an ACE in the ACL bound to the outside interface allowing traffic in from the network range assigned to my Anyconnect clients or should the ACL's defined in my DAP's overide the ACL bound to the interface and allow the access to my internal services?

Thanks in advance for any help.

1 REPLY

ASA DAP

You do not need to configure any ACL rules on outside interface to allow VPN pool to communicate with Inside/DMZ. Just no-nat statements are required.

Thanks

Ajay

225
Views
0
Helpful
1
Replies