Well, the return traffic is from a lower security to a higher level interface. Pings are not stateful, so the asa won't let the icmp echo replies from the outside back in.
-----Original Message-----
From: Syed Khalid Ali <khalid_khursheed_at_hotmail.com>
Date: Tue, 2 Jun 2009 16:48:26
To: <ccielab_at_groupstudy.com>
Subject: ASA ACL question
I have just started to learn ASA firewall. The question is:
1- For higher security interface to access lower security interfaces, no ACL
is required. No I tried this in lab. but I am unable to get a reply/access the
host on outside interface until an ACL for host to inside is applied on
outside interface inbound.
2-
Can any one explain!!!
Thanks
Khalid
Received on Tue Jun 02 2009 - 11:53:08 ART
This archive was generated by hypermail 2.2.0 : Wed Jul 01 2009 - 20:02:36 ART