Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
921
Views
5
Helpful
3
Replies

Access Control Policy Rule

Go to solution
benolyndav
Level 4
Level 4

‎12-20-2021 09:46 AM

Hi

So hope ive been getting this right if i want to block traffic to and from the same addresses I creat a rule it would be as the below

 

source ANY   destination ANY  source networks 23.33.44.55  destination networks 22.33.44.55  Source ports Any  Dest ports ANY

 

and block with reset

 

??

1 person had this problem
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP
In response to benolyndav

‎12-20-2021 11:06 AM

Hi @benolyndav sure if you've an explict or implict deny rule at the bottom of the ACP from outside to inside, then yes it would not be needed.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Rob Ingram
VIP
VIP

‎12-20-2021 09:52 AM

@benolyndav You'd need 2 rules, 1 from "any" to 22.33.44.55 block with reset and another from 22.33.44.55 to "any" block with reset.

Go to solution
benolyndav
Level 4
Level 4
In response to Rob Ingram

‎12-20-2021 11:01 AM

Hi Rob

Thanks 

Traffic the other way would be blocked anyway unless explicitly allowed from Outside to inside so is the 2nd rule even needed?

 

Thanks

0 Helpful

Go to solution
Rob Ingram
VIP
VIP
In response to benolyndav

‎12-20-2021 11:06 AM

Hi @benolyndav sure if you've an explict or implict deny rule at the bottom of the ACP from outside to inside, then yes it would not be needed.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card