Solved: access list

saidfrh · ‎01-08-2008

We are installing a router to access the internet and ASA firewall to protect the internal network. Are access list required in the above case, how would it be used, what would the access list(s) protect? The servers would have private IP addresses. The firewall's main function would be to open ports and close ports for hosts accessing the internet, PAT functions, creating and breaking down VPNs.

Thanks.

royalblues · ‎01-08-2008

Not sure i understand your question, are you referring to access-lists on the ASA or on the router?

The ASA would definitely require permission on either the inbound or outbound access-list depending on your requirement

There is no need for any access-lists on the routers though some are generally configured on the perimeter router but only as security measure and not for any specific access

HTH

Narayan

View solution in original post

s.arunkumar · ‎01-08-2008

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fsecur_c/ftrafwl/scfacls.htm

hope this will help

royalblues · ‎01-08-2008

Not sure i understand your question, are you referring to access-lists on the ASA or on the router?

The ASA would definitely require permission on either the inbound or outbound access-list depending on your requirement

There is no need for any access-lists on the routers though some are generally configured on the perimeter router but only as security measure and not for any specific access

HTH

Narayan