Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

Silver

ASA for vpn only

Hi,

I would like to configure the ASA for vpn only. By default ASA allows traffic from high security interface to low security interface. I want to stop this. Is there a way of doing this without resorting to access lists.

thanks

John

1 ACCEPTED SOLUTION

Accepted Solutions

Re: ASA for vpn only

Set the interfaces to the same security level and make sure you do not have same-security-traffic permit       inter-interface enabled.

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00807fc191.shtml

Hope that helps.

2 REPLIES

Re: ASA for vpn only

Set the interfaces to the same security level and make sure you do not have same-security-traffic permit       inter-interface enabled.

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00807fc191.shtml

Hope that helps.

Silver

Re: ASA for vpn only

Hi,

Thanks, That helps. I see the implicit rules all all deny when that is done.

Thanks

John

233
Views
0
Helpful
2
Replies