doubt with access-list in Firewalls

From: ciscosec sec (cciesecurityccie@gmail.com)
Date: Sat Jun 28 2008 - 05:43:56 ART

• Next message: Muhammad Nasim: "Re: doubt with access-list in Firewalls"
• Previous message: Christian Zeng: "Re: IE topology Dynamips and Real cisco gear question."
• Next in thread: Muhammad Nasim: "Re: doubt with access-list in Firewalls"
• Maybe reply: Muhammad Nasim: "Re: doubt with access-list in Firewalls"
• Maybe reply: Ramy Sisy: "RE: doubt with access-list in Firewalls"
• Maybe reply: Ramy Sisy: "RE: doubt with access-list in Firewalls"
• Maybe reply: Ahmad Safiullah: "Re: doubt with access-list in Firewalls"
• Maybe reply: Scott Morris: "RE: doubt with access-list in Firewalls"
• Maybe reply: Basel Sharif: "RE: doubt with access-list in Firewalls"
• Maybe reply: Scott Morris: "RE: doubt with access-list in Firewalls"
• Maybe reply: Ramy Sisy: "RE: doubt with access-list in Firewalls"
• Maybe reply: Muhammad Nasim: "Re: doubt with access-list in Firewalls"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hello Group,

I just had a doubt. In the labs is it ok to configure the access-list
on Firewalls with any any.

For eg if i were to configure IPSEC between 2 devices with the
Firewall in between,
can i configure the ASA as follows:
access-list outside permit esp any any
access-list outside permit upd any any eq isakmp

or do we need to specify the exact hosts in the access list.

Regards,
raul

• Next message: Muhammad Nasim: "Re: doubt with access-list in Firewalls"
• Previous message: Christian Zeng: "Re: IE topology Dynamips and Real cisco gear question."
• Next in thread: Muhammad Nasim: "Re: doubt with access-list in Firewalls"
• Maybe reply: Muhammad Nasim: "Re: doubt with access-list in Firewalls"
• Maybe reply: Ramy Sisy: "RE: doubt with access-list in Firewalls"
• Maybe reply: Ramy Sisy: "RE: doubt with access-list in Firewalls"
• Maybe reply: Ahmad Safiullah: "Re: doubt with access-list in Firewalls"
• Maybe reply: Scott Morris: "RE: doubt with access-list in Firewalls"
• Maybe reply: Basel Sharif: "RE: doubt with access-list in Firewalls"
• Maybe reply: Scott Morris: "RE: doubt with access-list in Firewalls"
• Maybe reply: Ramy Sisy: "RE: doubt with access-list in Firewalls"
• Maybe reply: Muhammad Nasim: "Re: doubt with access-list in Firewalls"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue Jul 01 2008 - 06:23:23 ART