https://community.cisco.com/t5/network-security/default-class-inspection-policy/m-p/2198062#M358886 <HTML><HEAD></HEAD><BODY><P>Hi Felipe,</P><P></P><P>Many thanks for Prompt reply.</P><P>ASA is interesting world.</P><P></P><P>Regards</P><P></P><P>MAhesh</P></BODY></HTML> Fri, 05 Apr 2013 02:40:07 GMT mahesh18 2013-04-05T02:40:07Z https://community.cisco.com/t5/network-security/default-class-inspection-policy/m-p/2198060#M358884 <P>Hi Everyone,</P><P></P><P>Need to know if default class inspection policy matches the incoming or outging traffic flowing through the ASA?</P><P></P><P>Example when i ping from PC&nbsp; connecting to the ASA&nbsp; to outside world will then it will match icmp traffic entering the ASA&nbsp; then ICMP reply coming</P><P>to outside interface?</P><P></P><P>Thanks</P><P></P><P>MAhesh</P> Tue, 12 Mar 2019 01:23:50 GMT https://community.cisco.com/t5/network-security/default-class-inspection-policy/m-p/2198060#M358884 mahesh18 2019-03-12T01:23:50Z https://community.cisco.com/t5/network-security/default-class-inspection-policy/m-p/2198061#M358885 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>The ASA is stateful in both directions, so the policy matches incoming and outgoing traffic.</P><P>What happens is that you also have security levels, so from high to low it is allow but from low to high it will be deny unless you configure an ACL.</P><P></P><P>Regards,</P><P></P><P>Felipe. </P></BODY></HTML> Fri, 05 Apr 2013 02:30:30 GMT https://community.cisco.com/t5/network-security/default-class-inspection-policy/m-p/2198061#M358885 lcambron 2013-04-05T02:30:30Z https://community.cisco.com/t5/network-security/default-class-inspection-policy/m-p/2198062#M358886 <HTML><HEAD></HEAD><BODY><P>Hi Felipe,</P><P></P><P>Many thanks for Prompt reply.</P><P>ASA is interesting world.</P><P></P><P>Regards</P><P></P><P>MAhesh</P></BODY></HTML> Fri, 05 Apr 2013 02:40:07 GMT https://community.cisco.com/t5/network-security/default-class-inspection-policy/m-p/2198062#M358886 mahesh18 2013-04-05T02:40:07Z