Same security level interfaces with access lists

jeff6strings — Tue, 12 Mar 2019 04:56:24 GMT

We have an ASA 5510 with 3 connections, outside, inside and point2point running version 8.2 without nat control. We need hosts on the inside interface to communicate to hosts on the point2point interface. When we use the same-security-traffic permit inter-interface all works fine but we need to limit host to host traffic so we think ACLs will be the solution. Is there a way to establish inter interface traffic without same-security-traffic permit inter-interface and use access-lists or use this global command with access lists?

Thanks for any help.

Jeff

HiYes, as you were saying,

Henrik Grankvist — Wed, 15 Oct 2014 18:23:29 GMT

Yes, as you were saying, the best way is to configure the two interfaces with different security-levels and then use ACLs to restric the traffic.

topic Same security level interfaces with access lists in Network Security

Same security level interfaces with access lists

HiYes, as you were saying,