Access Rule in cisco ASA 5510 ver 6.2

Nimika123 · ‎01-03-2014

I am New to cisco ASA and would like to understand about Access rule basically i would like to know what does below do actually how do i read the below

is it like on interface outside , anyone comming from outside world on this outside inteface and going to destinition pool should be allowed

thats how i should read it ?

interface: outside

Action:permit

Source:any

Destinition:<obj_pool>

Service:tcp/https

Jouni Forss · ‎01-03-2014

Hi,

I guess you mean the ASDM version rather than the actual ASA software?

Sadly I dont use ASDM to configure ASA firewalls at all.

But to me it seems that the above just means that

The rule is related/attached to the "outside" interface
The rule permits traffic
The source address/network/subnet can be anything
The destination is
The protocol is TCP and the ports 443 (HTTPS)

On the CLI of the ASA you can use the following command to list all the ACL / Access List configurations

show run access-list

With the following command you can view what ACLs / Access Lists are connected to which interfaces on the ASA

show run access-group

- Jouni

johnlloyd_13 · ‎01-04-2014

Hi Sagar,

Your understanding is correct and it's commonly termed "inbound" traffic.
That is, traffic sourced from lower security arriving to a higher security level. The "outbound" traffic would just be the reverse

For the example given, it means that any traffic from outside (usually Internet traffic), with source TCP port 443/HTTPS, will be allowed to communicate to the object pool/alias that was defined.

Sent from Cisco Technical Support iPhone App

Nimika123 · ‎01-08-2014

Thankyou