Re: access-list issue

SA1IM · ‎12-28-2019

Hello everybody

I have a firewall version 4.0 and I did two different access-list but I got (hitcount=0)

I'm confusing in the following :

interfac Vlan12

nameif inside

security level 100

ip add xxx.xxx.xxx.xxx

interface Vlan400

nameif outside

security level 0

ip add xxx.xxx.xxx.xxx

interface Vlan403

nameif Branch1

security level 0

ip add xxx.xxx.xxx.xxx

access-group A to B in interface inside (It is working fine )

access-group B to A in interface outside (It is working fine)

access-group C to D in interface Branch1 (note: this is another network and it is not working )

Does my configuration correct?

Please any one let me know

my best regards

Karsten Iwen · ‎12-29-2019

You probably have an ASA software running, but there is no version 4 of it ...

And you don't tell us what this A, B, C and D is. But if you want to communicate from systems on Interface Branch to Outside or vice versa, you need the command "same-security-traffic permit inter-interface" because traffic between two interfaces with the same security-level is blocked by default.

SA1IM · ‎12-29-2019

Hello Karsten Iwen
Sorry I forgot to mention that.
It is FWSM version 4.0

A, B, C, D are the branches of my network

A has different network
B has different network
and so on for the rest

My regards