Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
246
Views
0
Helpful
1
Replies

Resetting a connection matched by ACL

Alex Ferenstein
Level 1
Level 1

‎10-27-2014 01:01 AM - edited ‎03-12-2019 06:07 PM

A requirement is to send a TCP Reset (RST) without changing ASA's global setting "service".

The protocol for the connection is unknown.

My understanding is that actions such as "reset", "drop" or "drop-connection" is for an "inspect" type Policy-Map and not for "Layer 3/4" type Policy-Map.

So, how can I send a TCP Reset for an ordinary connection attempt (matched by an ACL)?

Labels:
0 Helpful
1 Reply 1

Vibhor Amrodia
Cisco Employee
Cisco Employee

‎10-27-2014 05:28 AM

Hi,

The "service" command would be the only way to RESET a connection explicitly on the ASA device.

As you correctly pointed out this will be a global setting on the ASA device.

Thanks and Regards,

Vibhor Amrodia

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card