topic ASA - Security Levels Question in Network Security https://community.cisco.com/t5/network-security/asa-security-levels-question/m-p/1145127#M861199 <P>I understand that you can go from a higher security interface to a lower security interface without configuring acls. The ASDM shows that there is an implicit rule allowing this. My question is - once I configure an access rule on the ASDM, that line disappears. Does that mean that I no longer have an implicit rule allowing me to go from a higher security interface to a lower security interface. I am entering a rule to allow a DMZ interface (level 50) to reach some internal servers on the inside (level 100). Once I configure this rule, have I now cutoff access to the level 0 interface?</P><P></P><P>Thanks,</P><P>Jim</P> Mon, 11 Mar 2019 15:14:31 GMT jim_berlow 2019-03-11T15:14:31Z ASA - Security Levels Question https://community.cisco.com/t5/network-security/asa-security-levels-question/m-p/1145127#M861199 <P>I understand that you can go from a higher security interface to a lower security interface without configuring acls. The ASDM shows that there is an implicit rule allowing this. My question is - once I configure an access rule on the ASDM, that line disappears. Does that mean that I no longer have an implicit rule allowing me to go from a higher security interface to a lower security interface. I am entering a rule to allow a DMZ interface (level 50) to reach some internal servers on the inside (level 100). Once I configure this rule, have I now cutoff access to the level 0 interface?</P><P></P><P>Thanks,</P><P>Jim</P> Mon, 11 Mar 2019 15:14:31 GMT https://community.cisco.com/t5/network-security/asa-security-levels-question/m-p/1145127#M861199 jim_berlow 2019-03-11T15:14:31Z Re: ASA - Security Levels Question https://community.cisco.com/t5/network-security/asa-security-levels-question/m-p/1145128#M861202 <HTML><HEAD></HEAD><BODY><P>Jim,</P><P></P><P>No, the higher levels will still be able to go out. Have you noticed a problem?</P><P></P><P>HTH,</P><P></P><P>John</P></BODY></HTML> Fri, 03 Apr 2009 20:55:16 GMT https://community.cisco.com/t5/network-security/asa-security-levels-question/m-p/1145128#M861202 John Blakley 2009-04-03T20:55:16Z