topic Re: Dynamic External ACL in Network Security

Dynamic External ACL

Andy Guley — Thu, 31 Oct 2019 13:49:59 GMT

Is there a way in the ASA to point to a file to update an ACL? Palo Alto has an option to do this. Is there an equivalent in the ASA?

Rob Ingram — Thu, 31 Oct 2019 13:56:37 GMT

Hi,

Not on ASA that I am aware of, but with FTD you can use define a custom Security Intelligence list to blacklist/whitelist traffic. Example here.

HTH

balaji.bandi — Thu, 31 Oct 2019 14:31:09 GMT

Personally This is more of Proxy Feature (like WSA/Ironport ) - or as suggested possible with NGFW